[FFmpeg-devel] [PATCH 7/7] avcodec/hevc/ps: Fix dependant layer id check

James Almer jamrial at gmail.com
Fri May 9 01:10:38 EEST 2025


On 5/8/2025 6:57 PM, Michael Niedermayer wrote:
> Fixes: shift exponent 49 is too large for 32-bit type 'int'
> Fixes: 398060145/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HEVC_fuzzer-5023082406543360
> 
> Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
> Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
> ---
>   libavcodec/hevc/ps.c | 4 ++--
>   1 file changed, 2 insertions(+), 2 deletions(-)
> 
> diff --git a/libavcodec/hevc/ps.c b/libavcodec/hevc/ps.c
> index 24f4218931d..4b021ea9c1f 100644
> --- a/libavcodec/hevc/ps.c
> +++ b/libavcodec/hevc/ps.c
> @@ -652,8 +652,8 @@ static int decode_vps_ext(GetBitContext *gb, AVCodecContext *avctx, HEVCVPS *vps
>   
>       /* Consequence of established layer dependencies */
>       if (layer1_id_included &&
> -        layer1_id_included != ((1 << vps->layer_id_in_nuh[0]) |
> -                               (1 << vps->layer_id_in_nuh[1]))) {
> +        layer1_id_included != ((1ULL << vps->layer_id_in_nuh[0]) |
> +                               (1ULL << vps->layer_id_in_nuh[1]))) {

LGTM.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature.asc
Type: application/pgp-signature
Size: 495 bytes
Desc: OpenPGP digital signature
URL: <https://ffmpeg.org/pipermail/ffmpeg-devel/attachments/20250508/fe1c790a/attachment.sig>


More information about the ffmpeg-devel mailing list