PR #23119 opened by michaelni URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/23119 Patch URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/23119.patch
Fixes: ada-2-poc.mkv Found-by: Claude and Ada Logics. This issue was found by Anthropic from using agents to study security of open source projects, and I am from Ada Logics helping validate the found issues and report to maintainers. Signed-off-by: Michael Niedermayer <[email protected]> >From 05a8522788b1e7ca7bc62e93b4a437bf39a42444 Mon Sep 17 00:00:00 2001 From: David Korczynski <[email protected]> Date: Sat, 16 May 2026 16:52:36 +0200 Subject: [PATCH] avfilter/boxblur: Fix off by one errors Fixes: ada-2-poc.mkv Found-by: Claude and Ada Logics. This issue was found by Anthropic from using agents to study security of open source projects, and I am from Ada Logics helping validate the found issues and report to maintainers. Signed-off-by: Michael Niedermayer <[email protected]> --- libavfilter/boxblur.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/libavfilter/boxblur.c b/libavfilter/boxblur.c index 43c724daea..51029b93b4 100644 --- a/libavfilter/boxblur.c +++ b/libavfilter/boxblur.c @@ -114,9 +114,9 @@ int ff_boxblur_eval_filter_params(AVFilterLink *inlink, #define CHECK_RADIUS_VAL(w_, h_, comp) \ if (comp->radius < 0 || \ - 2*comp->radius > FFMIN(w_, h_)) { \ + 2*comp->radius >= FFMIN(w_, h_)) { \ av_log(ctx, AV_LOG_ERROR, \ - "Invalid " #comp " radius value %d, must be >= 0 and <= %d\n", \ + "Invalid " #comp " radius value %d, must be >= 0 and < %d\n", \ comp->radius, FFMIN(w_, h_)/2); \ return AVERROR(EINVAL); \ } -- 2.52.0 _______________________________________________ ffmpeg-devel mailing list -- [email protected] To unsubscribe send an email to [email protected]
