- 10 Feb, 2017 2 commits
-
-
Matt Wolenetz authored
Core of patch is from paul@paulmehta.com Reference https://crbug.com/643952 (senc,saiz portions) Signed-off-by:
Matt Wolenetz <wolenetz@chromium.org> Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 36aba43b ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Matt Wolenetz authored
Core of patch is from paul@paulmehta.com Reference https://crbug.com/643952 (udta_string portion) Signed-off-by:
Matt Wolenetz <wolenetz@chromium.org> Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 9bbdf5d9 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 08 Feb, 2017 4 commits
-
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Fixes reading freed memory Fixes: 568/clusterfuzz-testcase-6107186067406848 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit c03029a8 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Matt Wolenetz authored
Core of patch is from paul@paulmehta.com Reference https://crbug.com/643951 Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> Check value reduced as the code does not support values beyond INT_MAX Also the check is moved to a more common place and before integer truncation (cherry picked from commit 2d453188 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Matt Wolenetz authored
Core of patch is from paul@paulmehta.com Reference https://crbug.com/643950 Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> Check value reduced as the code does not support larger lengths (cherry picked from commit fd30e4d5 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 07 Feb, 2017 1 commit
-
-
Michael Niedermayer authored
Fixes: 559/clusterfuzz-testcase-6424225917173760 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 8c2ea303 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 06 Feb, 2017 2 commits
-
-
Michael Niedermayer authored
Fixes: null pointer dereference Fixes: 555/clusterfuzz-testcase-5986646595993600 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit e248522d ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Chris Cunningham authored
Blocks are marked as key frames whenever the "reference" field is zero. This breaks for non-keyframe Blocks with a reference timestamp of zero. The likelihood of reference timestamp being zero is increased by a longstanding bug in muxing that encodes reference timestamp as the absolute time of the referenced frame (rather than relative to the current Block timestamp, as described in MKV spec). Now using INT64_MIN to denote "no reference". Reported to chromium at http://crbug.com/497889 (contains sample) (cherry picked from commit ac25840e ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 05 Feb, 2017 2 commits
-
-
James Almer authored
Happy new year! (cherry picked from commit d800d48f ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 04 Feb, 2017 2 commits
-
-
Michael Niedermayer authored
Fixes out of array access Fixes: 546/clusterfuzz-testcase-4809433909559296 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit e477f09d ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Fixes out of array read Fixes: 544/clusterfuzz-testcase-5936536407244800.f8bd9b24_8ba77916_70c2c7be_3df6a2ea_96cd9f14 Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit b1e21920 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 03 Feb, 2017 13 commits
-
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Fixes timeout Fixes: 496/clusterfuzz-testcase-5805083497332736 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 37826566 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Frank Liberato authored
Return AVERROR_INVALIDDATA if all four bytes aren't present. Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 95bde499 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Fixes out of array access Fixes: 452/fuzz-1-ffmpeg_VIDEO_AV_CODEC_ID_INTERPLAY_VIDEO_fuzzer Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 2080bc33 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Fixes timeout Fixes: 446/fuzz-3-ffmpeg_VIDEO_AV_CODEC_ID_VP6_fuzzer Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 9e6a2427 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Fixes timeout Fixes: 445/fuzz-3-ffmpeg_VIDEO_AV_CODEC_ID_MJPEG_fuzzer Fixes: 456/fuzz-2-ffmpeg_VIDEO_AV_CODEC_ID_JPEGLS_fuzzer Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 755933cb ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Fixes out of array access Fixes: 444/fuzz-2-ffmpeg_VIDEO_AV_CODEC_ID_PNG_fuzzer Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit e371f031 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Tobias Rapp authored
Fixes pts gaps when reading AVI files > 256GiB generated by FFmpeg. Signed-off-by:
Tobias Rapp <t.rapp@noa-archive.com> Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 6d579d7c ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Fixes assertion failure due to unsupported case Fixes: 356/fuzz-1-ffmpeg_VIDEO_AV_CODEC_ID_MJPEG_fuzzer Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 25d9643f ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
This should fix issues on BSD CLOCKS_PER_SEC is 128 on BSD while SUSv2 requires it to be a million Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit c4152fc4 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Tested-by:
Thomas Turner <thomastdt@googlemail.com> Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit da73d95b ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Reviewed-by:
Andreas Cadhalpun <andreas.cadhalpun@googlemail.com> Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit f0bdd538 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Fixes CVE-2016-9561, Note the security relevance of this is disputed as running out of memory can happen with valid files Suggested-by:
Andreas Cadhalpun <andreas.cadhalpun@googlemail.com> Reviewed-by:
Andreas Cadhalpun <andreas.cadhalpun@googlemail.com> Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 30581c51 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 01 Feb, 2017 1 commit
-
-
Andreas Cadhalpun authored
The code relies on their validity and otherwise can try to access a NULL object->rle pointer, causing segmentation faults. Reviewed-by:
Michael Niedermayer <michael@niedermayer.cc> Signed-off-by:
Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com> (cherry picked from commit 842e98b4 ) Signed-off-by:
Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>
-
- 10 Dec, 2016 2 commits
-
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit f542b152 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
This allows user apps to stop OOM due to excessive number of streams Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 1296f844 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 09 Dec, 2016 4 commits
-
-
Michael Niedermayer authored
We are checking during encoding if there is enough space as version 4 needs that check. Fixes Ticket6005 Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 38a7834b ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Fixes: part of 670190.ogg Found-by:
Matt Wolenetz <wolenetz@google.com> Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 8258e363 ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Fixes: part of 670190.ogg Fixes integer overflow Found-by:
Matt Wolenetz <wolenetz@google.com> Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit ee2a6f5d ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit cff1c0ed ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
- 05 Dec, 2016 7 commits
-
-
Michael Niedermayer authored
Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
James Almer authored
Reviewed-by:
Michael Niedermayer <michael@niedermayer.cc> Signed-off-by:
James Almer <jamrial@gmail.com> (cherry picked from commit b52d3574)
-
Ronald S. Bultje authored
(cherry picked from commit 845bb401)
-
Ronald S. Bultje authored
Fixes #5992, reported and found by Paul Cher <paulcher@icloud.com>. (cherry picked from commit 2a05c8f8)
-
Michael Niedermayer authored
Fixes out of array access Fixes: poc_ffserver.py Found-by:
Paul Cher <paulcher@icloud.com> Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit a5d25faa ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
This should make it less ambigous that these are URLs Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit a5f27a9c ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-
Michael Niedermayer authored
Fixes out of array access Found-by:
Paul Cher <paulcher@icloud.com> Reviewed-by:
Paul Cher <paulcher@icloud.com> Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 7d57ca4d ) Signed-off-by:
Michael Niedermayer <michael@niedermayer.cc>
-