[FFmpeg-devel] [PATCH 3/3] avformat/flvdec: Check for EOF in amf_parse_object()

Michael Niedermayer michael at niedermayer.cc
Sat Oct 17 15:37:11 EEST 2020


On Fri, Oct 09, 2020 at 06:47:15PM +0200, Michael Niedermayer wrote:
> On Fri, Oct 09, 2020 at 10:37:20PM +0800, Steven Liu wrote:
> > 
> > 
> > > 在 2020年10月9日,03:19,Michael Niedermayer <michael at niedermayer.cc> 写道:
> > > 
> > > Fixes: Timeout (too long -> 1ms)
> > > Fixes: 26108/clusterfuzz-testcase-minimized-ffmpeg_DEMUXER_fuzzer-5653887668977664
> > > 
> > > Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
> > > Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
> > > ---
> > > libavformat/flvdec.c | 3 +++
> > > 1 file changed, 3 insertions(+)
> > > 
> > > diff --git a/libavformat/flvdec.c b/libavformat/flvdec.c
> > > index d480d0bc67..e6786e8b38 100644
> > > --- a/libavformat/flvdec.c
> > > +++ b/libavformat/flvdec.c
> > > @@ -493,8 +493,11 @@ static int amf_parse_object(AVFormatContext *s, AVStream *astream,
> > >     double num_val;
> > >     amf_date date;
> > > 
> > > +
> > empty line?
> 
> removed

will apply

[...]

-- 
Michael     GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB

If you drop bombs on a foreign country and kill a hundred thousand
innocent people, expect your government to call the consequence
"unprovoked inhuman terrorist attacks" and use it to justify dropping
more bombs and killing more people. The technology changed, the idea is old.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
URL: <https://ffmpeg.org/pipermail/ffmpeg-devel/attachments/20201017/bbab9262/attachment.sig>


More information about the ffmpeg-devel mailing list