[FFmpeg-devel] [PATCH 4/7] avcodec/sonic: Fix several integer overflows
Michael Niedermayer
michael at niedermayer.cc
Thu Jun 11 15:58:48 EEST 2020
On Sun, May 10, 2020 at 09:20:16PM +0200, Michael Niedermayer wrote:
> Fixes: signed integer overflow: 2129689466 + 2129689466 cannot be represented in type 'int'
> Fixes: 20715/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_SONIC_fuzzer-5155263109922816
>
> Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
> Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
> ---
> libavcodec/sonic.c | 7 ++++---
> 1 file changed, 4 insertions(+), 3 deletions(-)
will apply soon unless i hear objections
[...]
--
Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB
If the United States is serious about tackling the national security threats
related to an insecure 5G network, it needs to rethink the extent to which it
values corporate profits and government espionage over security.-Bruce Schneier
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
URL: <https://ffmpeg.org/pipermail/ffmpeg-devel/attachments/20200611/7996c40e/attachment.sig>
More information about the ffmpeg-devel
mailing list