[FFmpeg-cvslog] avcodec/jpeg2000dec: clear array length when freeing it
James Almer
git at videolan.org
Fri Jan 10 19:56:26 EET 2025
ffmpeg | branch: master | James Almer <jamrial at gmail.com> | Wed Jan 1 23:58:39 2025 -0300| [7f9c7f9849a2155224711f0ff57ecdac6e4bfb57] | committer: James Almer
avcodec/jpeg2000dec: clear array length when freeing it
Fixes NULL pointer dereferences.
Fixes ticket #11393.
Reviewed-by: Michael Niedermayer <michael at niedermayer.cc>
Signed-off-by: James Almer <jamrial at gmail.com>
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=7f9c7f9849a2155224711f0ff57ecdac6e4bfb57
---
libavcodec/jpeg2000dec.c | 1 +
1 file changed, 1 insertion(+)
diff --git a/libavcodec/jpeg2000dec.c b/libavcodec/jpeg2000dec.c
index e5e897a29f..b82d85d5ee 100644
--- a/libavcodec/jpeg2000dec.c
+++ b/libavcodec/jpeg2000dec.c
@@ -1521,6 +1521,7 @@ static int jpeg2000_decode_packet(Jpeg2000DecoderContext *s, Jpeg2000Tile *tile,
}
}
av_freep(&cblk->lengthinc);
+ cblk->nb_lengthinc = 0;
}
}
// Save state of stream
More information about the ffmpeg-cvslog
mailing list