Fixes: Timeout Fixes: 9330/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_VP9_fuzzer-5707345857347584
Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc> --- libavcodec/vp9.c | 3 +++ 1 file changed, 3 insertions(+) diff --git a/libavcodec/vp9.c b/libavcodec/vp9.c index b1178c9c0c..4ca51ec108 100644 --- a/libavcodec/vp9.c +++ b/libavcodec/vp9.c @@ -1302,6 +1302,9 @@ static int decode_tiles(AVCodecContext *avctx, memset(lflvl_ptr->mask, 0, sizeof(lflvl_ptr->mask)); } + if (td->c->end <= td->c->buffer && td->c->bits >= 0) { + return AVERROR_INVALIDDATA; + } if (s->pass == 2) { decode_sb_mem(td, row, col, lflvl_ptr, yoff2, uvoff2, BL_64X64); -- 2.18.0 _______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org http://ffmpeg.org/mailman/listinfo/ffmpeg-devel
