[FFmpeg-devel] [PATCH 1/5] avcodec/apedec: Fix integer overflow in filter_3800()

Michael Niedermayer michael at niedermayer.cc
Fri Sep 16 20:57:46 EEST 2022


On Sun, Sep 11, 2022 at 12:30:42AM +0200, Michael Niedermayer wrote:
> Fixes: signed integer overflow: -2147448926 + -198321 cannot be represented in type 'int'
> Fixes: 48798/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_APE_fuzzer-5739619273015296
> Fixes: 48798/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_APE_fuzzer-6744428485672960
> 
> Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
> Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
> ---
>  libavcodec/apedec.c | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)

will apply

[...]
-- 
Michael     GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB

Rewriting code that is poorly written but fully understood is good.
Rewriting code that one doesnt understand is a sign that one is less smart
than the original author, trying to rewrite it will not make it better.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
URL: <https://ffmpeg.org/pipermail/ffmpeg-devel/attachments/20220916/1d85ec48/attachment.sig>


More information about the ffmpeg-devel mailing list