This is an automated email from the git hooks/post-receive script. Git pushed a commit to branch master in repository ffmpeg.
commit c2047918e627dd0e2e83df8faf6f1e9c69e68514 Author: Michael Niedermayer <[email protected]> AuthorDate: Wed May 20 01:35:17 2026 +0200 Commit: michaelni <[email protected]> CommitDate: Mon May 25 00:10:18 2026 +0000 avformat/hls: Check url_offset and size Fixes: integer overflow Found-by: jiale yao Signed-off-by: Michael Niedermayer <[email protected]> --- libavformat/hls.c | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/libavformat/hls.c b/libavformat/hls.c index 9a4c6304e7..b03201c690 100644 --- a/libavformat/hls.c +++ b/libavformat/hls.c @@ -454,6 +454,11 @@ static struct segment *new_init_section(struct playlist *pls, ptr = strchr(info->byterange, '@'); if (ptr) sec->url_offset = strtoll(ptr+1, NULL, 10); + if (sec->size < 0 || sec->url_offset < 0 || sec->size > INT64_MAX - sec->url_offset) { + av_freep(&sec->url); + av_free(sec); + return NULL; + } } else { /* the entire file is the init section */ sec->size = -1; _______________________________________________ ffmpeg-cvslog mailing list -- [email protected] To unsubscribe send an email to [email protected]
