On Thu, 7 May 2026, 03:35 michaelni via ffmpeg-devel, < [email protected]> wrote:
> PR #23035 opened by michaelni > URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/23035 > Patch URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/23035.patch > > Fixes: out of array read > Fixes: > 500770604/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HEVC_fuzzer-6157374833623040 > > Found-by: continuous fuzzing process > https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg > Signed-off-by > <https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by>: > Michael Niedermayer <[email protected]> > > > >From bf05af3e2f6758e64f8c6d3c74b76cab07c2b75e Mon Sep 17 00:00:00 2001 > From: Michael Niedermayer <[email protected]> > Date: Thu, 7 May 2026 01:09:00 +0200 > Subject: [PATCH] avcodec/hevc/ps: shift needs 4 entries because alpha > > Fixes: out of array read > Fixes: > 500770604/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_HEVC_fuzzer-6157374833623040 > > Found-by: continuous fuzzing process > https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg > Signed-off-by > <https://github.com/google/oss-fuzz/tree/master/projects/ffmpegSigned-off-by>: > Michael Niedermayer <[email protected]> > --- > libavcodec/hevc/ps.h | 4 ++-- > 1 file changed, 2 insertions(+), 2 deletions(-) > > diff --git a/libavcodec/hevc/ps.h b/libavcodec/hevc/ps.h > index d620887b8e..b174ff392e 100644 > --- a/libavcodec/hevc/ps.h > +++ b/libavcodec/hevc/ps.h > @@ -360,8 +360,8 @@ typedef struct HEVCSPS { > int min_pu_height; > int tb_mask; > > - int hshift[3]; > - int vshift[3]; > + int hshift[4]; > + int vshift[4]; > > int qp_bd_offset; > > -- > 2.52.0 > > _______________________________________________ > ffmpeg-devel mailing list -- [email protected] > To unsubscribe send an email to [email protected] Ok > > _______________________________________________ ffmpeg-devel mailing list -- [email protected] To unsubscribe send an email to [email protected]
