[FFmpeg-cvslog] update for 3.3.8

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon Jul 16 20:44:22 2018 +0200| [18c9d5d3e80dc0b47e0a260b51f5230bdd499e8b] | committer: Michael Niedermayer update for 3.3.8 Signed-off-by: Michael Niedermayer > http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=18c9d5d3e80dc0b47e0

[FFmpeg-cvslog] avformat/movenc: Write version 2 of audio atom if channels is not known

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sun Jul 8 00:16:42 2018 +0200| [87ddf73e52b412ee015108ec2f1aaac7a05c947f] | committer: Michael Niedermayer avformat/movenc: Write version 2 of audio atom if channels is not known The version 1 needs the channel count and would divide by 0 F

[FFmpeg-cvslog] avcodec/dvdsub_parser: Allocate input padding

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Jul 13 18:56:10 2018 +0200| [eae9ab01930169bceb439a7ef62ecb0549e4a6fb] | committer: Michael Niedermayer avcodec/dvdsub_parser: Allocate input padding Fixes: out of array read Fixes: 9350/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID

[FFmpeg-cvslog] avformat/movenc: Check input sample count

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Jul 6 22:23:25 2018 +0200| [6a0a16e563f07722acd4b666b2c501e186e9fa4b] | committer: Michael Niedermayer avformat/movenc: Check input sample count Fixes: division by 0 Fixes: fpe_movenc.c_199_1.wav Fixes: fpe_movenc.c_199_2.wav Fixes: fpe

[FFmpeg-cvslog] swresample/arm: rename labels to fix xcode build error

ffmpeg | branch: release/3.3 | Rahul Chaudhry | Fri Apr 27 13:49:52 2018 -0700| [0e9ecdabf3a43dadb59e690dcedc5798f779960d] | committer: Michael Niedermayer swresample/arm: rename labels to fix xcode build error Signed-off-by: Michael Niedermayer (cherry picked from commit e84212b78e00df17799e

[FFmpeg-cvslog] avcodec/mjpegdec: Check for odd progressive RGB

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Jul 6 16:28:14 2018 +0200| [314ca5672d378997a8a523b567b846c518cef8f1] | committer: Michael Niedermayer avcodec/mjpegdec: Check for odd progressive RGB Fixes: out of array access Fixes: 9225/clusterfuzz-testcase-minimized-ffmpeg_AV_CODE

[FFmpeg-cvslog] avcodec/dirac_dwt_template: Fix signedness regression in interleave()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Jul 13 18:33:08 2018 +0200| [c8ca54961dcc49ac7eb6353b6c007be3a0dfe1cc] | committer: Michael Niedermayer avcodec/dirac_dwt_template: Fix signedness regression in interleave() Found-by: Tested-by: James Darnley Signed-off-by: Michael Nie

[FFmpeg-cvslog] avformat/pva: Check for EOF before retrying in read_part_of_packet()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue Jul 3 22:14:42 2018 +0200| [9bb3047060c33e93ace258634aa89ee1705ec0c3] | committer: Michael Niedermayer avformat/pva: Check for EOF before retrying in read_part_of_packet() Fixes: Infinite loop Fixes: pva-4b1835dbc2027bf3c567005dcc78e851

[FFmpeg-cvslog] avformat/rmdec: Do not pass mime type in rm_read_multi() to ff_rm_read_mdpr_codecdata()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue Jul 3 21:37:46 2018 +0200| [34654d41d4bd9abb3b848477a6dd0a7d33816d4e] | committer: Michael Niedermayer avformat/rmdec: Do not pass mime type in rm_read_multi() to ff_rm_read_mdpr_codecdata() Fixes: use after free() Fixes: rmdec-crash-f

[FFmpeg-cvslog] avcodec/shorten: Fix undefined addition in shorten_decode_frame()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon Jul 2 19:11:46 2018 +0200| [01a694d4823c48ecc602f31a39a85aac4b7eaf66] | committer: Michael Niedermayer avcodec/shorten: Fix undefined addition in shorten_decode_frame() Fixes: signed integer overflow: 1139785606 + 1454196085 cannot be r

[FFmpeg-cvslog] avformat/movenc: Check that frame_types other than EAC3_FRAME_TYPE_INDEPENDENT have a supported substream id

ffmpeg | branch: release/3.3 | Michael Niedermayer | Wed Jun 27 16:51:51 2018 +0200| [78b1fbca3404459dcf8a1c34b5c7f9a5825ad61f] | committer: Michael Niedermayer avformat/movenc: Check that frame_types other than EAC3_FRAME_TYPE_INDEPENDENT have a supported substream id Fixes: out of array acc

[FFmpeg-cvslog] avcodec/dvdsub_parser: Init output buf/size

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Jul 13 18:54:48 2018 +0200| [db85ff35788dfbe3f1570e71640c99f7c24579f0] | committer: Michael Niedermayer avcodec/dvdsub_parser: Init output buf/size No testcase Signed-off-by: Michael Niedermayer (cherry picked from commit 9e6c843776166

[FFmpeg-cvslog] avcodec/imgconvert: fix possible null pointer dereference

ffmpeg | branch: release/3.3 | Simon Thelen | Tue Apr 3 14:41:33 2018 +0200| [28e0e494ee6499e7c37255e54453d791ff79ae54] | committer: Michael Niedermayer avcodec/imgconvert: fix possible null pointer dereference regression since 354b26a3945eadd4ed8fcd801dfefad2566241de (cherry picked from com

[FFmpeg-cvslog] avcodec/vp8_parser: Do not leave data/size uninitialized

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Jul 6 12:01:46 2018 +0200| [68fb93be04a40b9a90f7d118e459f9c09be3c913] | committer: Michael Niedermayer avcodec/vp8_parser: Do not leave data/size uninitialized This is identical to what the VP9 parser does Fixes: 9215/clusterfuzz-test

[FFmpeg-cvslog] avformat/mms: Add missing chunksize check

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue Jul 3 20:33:04 2018 +0200| [4d77a4a54d2f5c34a9cc7d3b3424d16e24515a0f] | committer: Michael Niedermayer avformat/mms: Add missing chunksize check Fixes: out of array read Fixes: mms-crash-01b6c5d85f9d9f40f4e879896103e9f5b222816a Found-b

[FFmpeg-cvslog] avcodec/indeo4: Check for end of bitstream in decode_mb_info()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon Jul 2 01:26:44 2018 +0200| [c43f5e0dce1b1b77d300a7e2fe382dba229ec781] | committer: Michael Niedermayer avcodec/indeo4: Check for end of bitstream in decode_mb_info() Fixes: Timeout Fixes: 8776/clusterfuzz-testcase-minimized-ffmpeg_AV_C

[FFmpeg-cvslog] avcodec/escape124: Check buf_size against num_superblocks

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sun Jun 24 19:23:02 2018 +0200| [b0c14b02b0570a2edd7054bf7dd6b6e9b00e5858] | committer: Michael Niedermayer avcodec/escape124: Check buf_size against num_superblocks Fixes: Timeout Fixes: 8722/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_

[FFmpeg-cvslog] avformat/movenc: Do not pass AVCodecParameters in avpriv_request_sample

ffmpeg | branch: release/3.3 | Michael Niedermayer | Wed Jun 27 17:27:50 2018 +0200| [672ada0f179b3ef45e52987d8c96716d23aa0722] | committer: Michael Niedermayer avformat/movenc: Do not pass AVCodecParameters in avpriv_request_sample Fixes: out of array read Fixes: ffmpeg_crash_8.avi Found-by:

[FFmpeg-cvslog] avcodec/cscd: Check output buffer size for lzo.

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Jun 22 01:18:20 2018 +0200| [3db270a0786207fc5692581ae2fe3f28b917e430] | committer: Michael Niedermayer avcodec/cscd: Check output buffer size for lzo. Fixes: Timeout Fixes: 8665/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_CSCD_fu

[FFmpeg-cvslog] avcodec/jpeg2000dec: Fixes invalid shifts in jpeg2000_decode_packets_po_iteration()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon Jul 2 18:57:05 2018 +0200| [bba9bb735a535c9e6bf21fd3457913d7fe831e2e] | committer: Michael Niedermayer avcodec/jpeg2000dec: Fixes invalid shifts in jpeg2000_decode_packets_po_iteration() Fixes: shift exponent 47 is too large for 32-bit

[FFmpeg-cvslog] avcodec/shorten: Fix undefined integer overflow

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon Jul 2 19:08:54 2018 +0200| [739e3ff47533746a72fd212eae4af009144921c6] | committer: Michael Niedermayer avcodec/shorten: Fix undefined integer overflow Fixes: signed integer overflow: 8454144 * 256 cannot be represented in type 'int' Fi

[FFmpeg-cvslog] avcodec/jpeg2000dec: Check that there are enough bytes for all tiles

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon Jul 2 18:40:08 2018 +0200| [0bc74532a94716217ab43f20a65764cd4f019e52] | committer: Michael Niedermayer avcodec/jpeg2000dec: Check that there are enough bytes for all tiles Fixes: OOM Fixes: 8781/clusterfuzz-testcase-minimized-ffmpeg_AV

[FFmpeg-cvslog] avcodec/ra144: Fix integer overflow in ff_eval_refl()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Thu Jun 21 23:08:32 2018 +0200| [eedde18f1a8f5cb32883d0bf529f400b82d80d1c] | committer: Michael Niedermayer avcodec/ra144: Fix integer overflow in ff_eval_refl() Fixes: signed integer overflow: -4096 * -524288 cannot be represented in type

[FFmpeg-cvslog] avcodec/escape124: Fix spelling errors in comment

ffmpeg | branch: release/3.3 | Michael Niedermayer | Wed Jun 27 13:00:28 2018 +0200| [228c05ee547d99e7aae5c895172d99581b03eed9] | committer: Michael Niedermayer avcodec/escape124: Fix spelling errors in comment Signed-off-by: Michael Niedermayer (cherry picked from commit f59c4e43915ed0528e27

[FFmpeg-cvslog] avcodec/dirac_dwt_template: Fix undefined behavior in interleave()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Thu Jun 14 16:37:32 2018 +0200| [c66723ec498019ab14139905d0b5f0c9af6e377b] | committer: Michael Niedermayer avcodec/dirac_dwt_template: Fix undefined behavior in interleave() Fixes: signed integer overflow: 2147483647 + 1 cannot be represent

[FFmpeg-cvslog] avcodec/aacdec_fixed: Fix undefined integer overflow in apply_independent_coupling_fixed()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Thu Jun 14 16:41:49 2018 +0200| [516f8dbc58a2777b23065e83157f8462d00600dd] | committer: Michael Niedermayer avcodec/aacdec_fixed: Fix undefined integer overflow in apply_independent_coupling_fixed() Fixes: signed integer overflow: 1195517 *

[FFmpeg-cvslog] avcodec/h264_parser: Reduce needed history for parsing mb index

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Jun 22 21:45:59 2018 +0200| [76c4838a11a61fb0cfed5defff7e683f64068692] | committer: Michael Niedermayer avcodec/h264_parser: Reduce needed history for parsing mb index This fixes a bug/regression with very small packets Fixes: output_fil

[FFmpeg-cvslog] avcodec/mjpegdec: Check for end of bitstream in ljpeg_decode_rgb_scan()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Thu Jun 21 22:48:54 2018 +0200| [4fb69a60f6c0bdb335c2e86a2f1d2a8bd147ead6] | committer: Michael Niedermayer avcodec/mjpegdec: Check for end of bitstream in ljpeg_decode_rgb_scan() Fixes: Timeout Fixes: 8648/clusterfuzz-testcase-minimized-ff

[FFmpeg-cvslog] avutil/common: Fix undefined behavior in av_clip_uintp2_c()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Thu Jun 14 15:41:33 2018 +0200| [96cf8a9cf993db44007dd438edbbbdf69279943e] | committer: Michael Niedermayer avutil/common: Fix undefined behavior in av_clip_uintp2_c() Fixes: negation of -2147483648 cannot be represented in type 'int'; cast

[FFmpeg-cvslog] avcodec/shorten: Fix a negative left shift in shorten_decode_frame()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue Jun 5 13:12:54 2018 +0200| [b7134d7fb679df78069648d0fb7bc54a59f9f557] | committer: Michael Niedermayer avcodec/shorten: Fix a negative left shift in shorten_decode_frame() Fixes: left shift of negative value -9057 Fixes: 8527/clusterfu

[FFmpeg-cvslog] avcodec/fic: Avoid some magic numbers related to cursors

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sat May 5 23:42:36 2018 +0200| [05e253684ebc2985b0c4662a9f86e4475c20a5e4] | committer: Michael Niedermayer avcodec/fic: Avoid some magic numbers related to cursors Signed-off-by: Michael Niedermayer (cherry picked from commit c6a11714c4b12

[FFmpeg-cvslog] avformat/mov: Break out early if chunk_count is 0 in mov_build_index()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue May 15 17:06:59 2018 +0200| [aa50d67cc7d07278ce39d395871bc6a0dc7cfe32] | committer: Michael Niedermayer avformat/mov: Break out early if chunk_count is 0 in mov_build_index() Without this some operations might overflow (undefined behavio

[FFmpeg-cvslog] avcodec/h264_mc_template: Only prefetch motion if the list is used.

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Jun 8 18:25:14 2018 +0200| [5f771a74b23f83edbcc6f0cae79e458ac7931e1e] | committer: Michael Niedermayer avcodec/h264_mc_template: Only prefetch motion if the list is used. Fixes: index 59 out of bounds for type 'H264Ref [48]' Fixes: 823

[FFmpeg-cvslog] avcodec/shorten: Check non COMM chunk len before skip in decode_aiff_header()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue Jun 5 02:33:43 2018 +0200| [8da3d6916316588ad7c1f6d66e4133b51af9ea94] | committer: Michael Niedermayer avcodec/shorten: Check non COMM chunk len before skip in decode_aiff_header() Fixes: signed integer overflow: 2147483647 + 1 cannot b

[FFmpeg-cvslog] avcodec/shorten: Sanity check nmeans

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue Jun 5 13:03:48 2018 +0200| [f51163b1666e0d43fc94ac839e80f044ecb8b7c5] | committer: Michael Niedermayer avcodec/shorten: Sanity check nmeans Fixes: OOM Fixes: 8195/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_SHORTEN_fuzzer-5179785

[FFmpeg-cvslog] avcodec/amrwbdec: Fix division by 0 in find_hb_gain()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sun Jun 3 00:48:06 2018 +0200| [6577ae7119ebf326a1af25fb90c1afde74602633] | committer: Michael Niedermayer avcodec/amrwbdec: Fix division by 0 in find_hb_gain() This restructures the code slightly toward D_UTIL_dec_synthesis() Fixes: 7420

[FFmpeg-cvslog] avcodec/wavpack: Fix overflow in adding tail

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Jun 8 00:07:04 2018 +0200| [719931c036e7ace5bd0cf4f4027648f196e3f06e] | committer: Michael Niedermayer avcodec/wavpack: Fix overflow in adding tail Fixes: signed integer overflow: 2146907204 + 26846088 cannot be represented in type 'in

[FFmpeg-cvslog] avformat/mov: Only set pkt->duration to non negative values

ffmpeg | branch: release/3.3 | Michael Niedermayer | Wed May 16 23:35:58 2018 +0200| [98f10ca12ccc1accafbf26d9eeb6e7c91bd650eb] | committer: Michael Niedermayer avformat/mov: Only set pkt->duration to non negative values Reviewed-by: Sasi Inguva Signed-off-by: Michael Niedermayer (cherry pic

[FFmpeg-cvslog] avcodec/h264_ps: Move MAX_LOG2_MAX_FRAME_NUM to header so it can be used in h264_sei

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sun Jun 10 17:02:47 2018 +0200| [f4f9bd655d4254d3c9ef093efff1afbaeefbb219] | committer: Michael Niedermayer avcodec/h264_ps: Move MAX_LOG2_MAX_FRAME_NUM to header so it can be used in h264_sei Signed-off-by: Michael Niedermayer (cherry pic

[FFmpeg-cvslog] avcodec/shorten: Fix multiple integer overflows

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue Jun 5 13:19:35 2018 +0200| [3f66c3386c2466c13562b8b0ac3943dac22bbfa1] | committer: Michael Niedermayer avcodec/shorten: Fix multiple integer overflows Fixes: signed integer overflow: 3 * 1006632960 cannot be represented in type 'int' F

[FFmpeg-cvslog] fftools/ffmpeg: Fallback to duration if sample rate is unavailable

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue May 1 22:44:07 2018 +0200| [b5d51d23a068f7511662acd363b39d2f922dff0e] | committer: Michael Niedermayer fftools/ffmpeg: Fallback to duration if sample rate is unavailable Regression since: af1761f7 Fixes: Division by 0 Fixes: ffmpeg_cras

[FFmpeg-cvslog] avcodec/opus_silk: Change silk_lsf2lpc() slightly toward silk/NLSF2A.c

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sun Jun 3 01:33:54 2018 +0200| [412872e6cbf6313bc8eeccb9f5978861c8f044a2] | committer: Michael Niedermayer avcodec/opus_silk: Change silk_lsf2lpc() slightly toward silk/NLSF2A.c Fixes: runtime error: signed integer overflow: -1440457022 - 7

[FFmpeg-cvslog] avcodec/truemotion2: Fix overflow in tm2_apply_deltas()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue Jun 5 02:09:59 2018 +0200| [0f1e6771d03c4f5b998bced9c8dfc8cf4180a999] | committer: Michael Niedermayer avcodec/truemotion2: Fix overflow in tm2_apply_deltas() Fixes: signed integer overflow: 1077952576 + 1077952576 cannot be represented

[FFmpeg-cvslog] avformat/mov: replace a value error by clipping into valid range in mov_read_stsc()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon May 21 03:16:58 2018 +0200| [9ecb1998b034cf53bf3812eb1d3427cb82e41a21] | committer: Michael Niedermayer avformat/mov: replace a value error by clipping into valid range in mov_read_stsc() Fixes: #7165 Signed-off-by: Michael Niedermayer

[FFmpeg-cvslog] avcodec/mlpdec: Only change noise_type if the related fields are valid

ffmpeg | branch: release/3.3 | Michael Niedermayer | Thu May 17 13:58:46 2018 +0200| [fdab123c031250742ea84c188999a855baa4bf30] | committer: Michael Niedermayer avcodec/mlpdec: Only change noise_type if the related fields are valid Fixes: inconsistency Fixes:runtime error: index 8 out of bound

[FFmpeg-cvslog] avcodec/shorten: Fix undefined shift in fix_bitshift()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue Jun 5 13:15:34 2018 +0200| [c2d16aafbb1527d4b47ecfad659a381c22a017ba] | committer: Michael Niedermayer avcodec/shorten: Fix undefined shift in fix_bitshift() Fixes: left shift of negative value -9 Fixes: 8571/clusterfuzz-testcase-minim

[FFmpeg-cvslog] indeo4: Decode all or nothing of a band header.

ffmpeg | branch: release/3.3 | Michael Niedermayer | Thu May 17 13:40:38 2018 +0200| [b0207c5b2a82cc9a7c80640977a004053e2d6ecf] | committer: Michael Niedermayer indeo4: Decode all or nothing of a band header. This avoids inconsistent value combinations. Alternatively it would be possible to ad

[FFmpeg-cvslog] avcodec/g2meet: ask for sample with overflowing RGB

ffmpeg | branch: release/3.3 | Michael Niedermayer | Wed May 16 22:50:19 2018 +0200| [3be0bcbef6aa9b8b77766ce1e4f7320b1d33b2d7] | committer: Michael Niedermayer avcodec/g2meet: ask for sample with overflowing RGB Suggested-by: Tomas Härdin Signed-off-by: Michael Niedermayer (cherry picked f

[FFmpeg-cvslog] avcodec/dirac_dwt: Fix integer overflow in COMPOSE_DD97iH0 / COMPOSE_DD137iL0

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon May 14 00:10:33 2018 +0200| [8283586dce95cf66de744b35d37e5ea4b8c12405] | committer: Michael Niedermayer avcodec/dirac_dwt: Fix integer overflow in COMPOSE_DD97iH0 / COMPOSE_DD137iL0 Fixes: negation of -2147483648 cannot be represented in

[FFmpeg-cvslog] avformat/mov: Only fail for STCO/STSC contradictions if both exist

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue May 15 17:07:00 2018 +0200| [c48ac14c067d1b41650df785499c657361a0590b] | committer: Michael Niedermayer avformat/mov: Only fail for STCO/STSC contradictions if both exist Fixes regression with playback of GF9720Repeal20the20Eighth20with

[FFmpeg-cvslog] avcodec/mjpegdec: Fix integer overflow in ljpeg_decode_rgb_scan()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue Jun 5 02:17:24 2018 +0200| [bb6d47cf35836640309cf933a3d6a4bf1eec3ced] | committer: Michael Niedermayer avcodec/mjpegdec: Fix integer overflow in ljpeg_decode_rgb_scan() Fixes: signed integer overflow: 32768 + 2147450880 cannot be repres

[FFmpeg-cvslog] avcodec/fic: Check available input space for cursor

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sat May 5 22:00:01 2018 +0200| [38fd80c656b4550ac6a7aef0bf3d83027784226f] | committer: Michael Niedermayer avcodec/fic: Check available input space for cursor Fixes: out of array read Fixes: 6546/clusterfuzz-testcase-minimized-ffmpeg_AV_CO

[FFmpeg-cvslog] avcodec/xwddec: Use ff_set_dimensions()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Jun 8 00:42:31 2018 +0200| [a16a4fefb6d1dee75d329012c0e3ecaa7769ebd6] | committer: Michael Niedermayer avcodec/xwddec: Use ff_set_dimensions() Fixes: OOM Fixes: 8178/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_XWD_fuzzer-48447933

[FFmpeg-cvslog] avcodec/aacdec_fixed: use 64bit to avoid overflow in rounding in apply_dependent_coupling_fixed()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri May 25 22:06:48 2018 +0200| [6d8859e23474181f291a7b030b1ea04d4fa9ed05] | committer: Michael Niedermayer avcodec/aacdec_fixed: use 64bit to avoid overflow in rounding in apply_dependent_coupling_fixed() Fixes: signed integer overflow: -2

[FFmpeg-cvslog] avcodec/g723_1dec: Clip bits2 in both directions

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri May 25 21:56:04 2018 +0200| [45ce622f909354847bbbab9b650b2264d33f2d58] | committer: Michael Niedermayer avcodec/g723_1dec: Clip bits2 in both directions Fixes: shift exponent 33 is too large for 32-bit type 'int' Fixes: 6743/clusterfuzz

[FFmpeg-cvslog] oavcodec/aacpsdsp_template: Use unsigned for hs0X to prevent undefined behavior

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri May 25 22:02:20 2018 +0200| [e95a0e261fe92d73130ed5c5cc6e01b4f96c6c53] | committer: Michael Niedermayer oavcodec/aacpsdsp_template: Use unsigned for hs0X to prevent undefined behavior Fixes: signed integer overflow: 1073741842 + 17840081

[FFmpeg-cvslog] avcodec/mpeg4videoenc: Use 64 bit for times in mpeg4_encode_gop_header()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon May 21 23:08:05 2018 +0200| [d1bac7f2a68e164385d7018f2c2562e0d219] | committer: Michael Niedermayer avcodec/mpeg4videoenc: Use 64 bit for times in mpeg4_encode_gop_header() Fixes truncation Fixes Assertion n <= 31 && value < (1U << n

[FFmpeg-cvslog] avcodec/flac_parser: Fix infinite loop

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon Apr 30 22:20:28 2018 +0200| [90e9b76d3a9b4e220e7636fdc7672f1e91924a6c] | committer: Michael Niedermayer avcodec/flac_parser: Fix infinite loop Fixes: crbug/827204 Reported-by: Frank Liberato Reviewed-by: Frank Liberato Signed-off-by:

[FFmpeg-cvslog] avcodec/dsicinvideo: Fail if there is only a small fraction of the data available that comprises a full frame

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon Apr 16 22:29:09 2018 +0200| [7784a7c1d8df7364a01436a7c90f483db596be78] | committer: Michael Niedermayer avcodec/dsicinvideo: Fail if there is only a small fraction of the data available that comprises a full frame Fixes: Timeout Fixes:

[FFmpeg-cvslog] avcodec/elsdec: Fix memleaks

ffmpeg | branch: release/3.3 | Michael Niedermayer | Wed Apr 25 01:54:17 2018 +0200| [3d29170013b1e28770082d660e8695fe26ba4e2f] | committer: Michael Niedermayer avcodec/elsdec: Fix memleaks Fixes: 6798/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_G2M_fuzzer-5135899701542912 Found-by: co

[FFmpeg-cvslog] doc/APIchanges: Fix typos in hashes

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon Apr 16 18:23:12 2018 +0200| [f4e2ac296dac85bad5f42beb18bc29e39b51d29d] | committer: Michael Niedermayer doc/APIchanges: Fix typos in hashes Thanks-to: Moritz Barsnick for finding the correct ones Signed-off-by: Michael Niedermayer (ch

[FFmpeg-cvslog] avcodec/dsicinvideo: Propagate errors from cin_decode_rle()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon Apr 16 22:28:23 2018 +0200| [bd6a181d5a4998d0eb54c67845d64b52b9a74dca] | committer: Michael Niedermayer avcodec/dsicinvideo: Propagate errors from cin_decode_rle() Signed-off-by: Michael Niedermayer (cherry picked from commit 942217b153

[FFmpeg-cvslog] avcodec/g2meet: Check RGB upper limit

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Apr 27 20:16:13 2018 +0200| [d48738bd674f70131df4581936ef0125f1c26c5c] | committer: Michael Niedermayer avcodec/g2meet: Check RGB upper limit Fixes: runtime error: left shift of 1876744317 by 16 places cannot be represented in type 'int

[FFmpeg-cvslog] avcodec/g2meet: Change order of operations to avoid undefined behavior

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri May 4 18:16:08 2018 +0200| [6315215e5c0b4052f66f5f0f4311acd2031fb43c] | committer: Michael Niedermayer avcodec/g2meet: Change order of operations to avoid undefined behavior Fixes: signed integer overflow: 65280 * 196032 cannot be repre

[FFmpeg-cvslog] avcodec/cinepak: Skip empty frames

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue Apr 17 02:13:43 2018 +0200| [5d42300731b1ffdd52c27e198bb724f2c3918f23] | committer: Michael Niedermayer avcodec/cinepak: Skip empty frames Speeds up decoding from 3 to 0.1 seconds for 6302/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_

[FFmpeg-cvslog] avcodec/h263dec: Check slice_ret in mspeg4 slice loop

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sun Apr 22 21:07:45 2018 +0200| [69f861be42ecb07e1deac86757760ec36a8e7bef] | committer: Michael Niedermayer avcodec/h263dec: Check slice_ret in mspeg4 slice loop Fixes infinite loop Fixes: 6858/clusterfuzz-testcase-ffmpeg_AV_CODEC_ID_MSMPEG

[FFmpeg-cvslog] avcodec/dfa: Check dimension against maximum

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon Apr 16 22:04:53 2018 +0200| [45f03502c93dc09e6f9410f601cea4b00c7827d4] | committer: Michael Niedermayer avcodec/dfa: Check dimension against maximum The headers from where the dimensions are read in actual files are limited to 16bit per

[FFmpeg-cvslog] avcodec/cinepak: move some checks prior to frame allocation

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue Apr 17 02:13:42 2018 +0200| [4b0181dc009df6e8791417b6f7e7fd65bd284bf0] | committer: Michael Niedermayer avcodec/cinepak: move some checks prior to frame allocation Speeds up decoding from 8 to 3 seconds for 6302/clusterfuzz-testcase-min

[FFmpeg-cvslog] avcodec/vc1_block: simplify ac_val computation

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon Apr 23 02:08:10 2018 +0200| [77121f6bff4dd08bffae2d9f94fc144636678100] | committer: Michael Niedermayer avcodec/vc1_block: simplify ac_val computation also fixes: runtime error: index 1456 out of bounds for type 'int16_t [16]' Found-by:

[FFmpeg-cvslog] avcodec/jpeg2000dec: Fix undefined shift in the jpeg2000_decode_packets_po_iteration() CPRL case

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri May 4 19:18:25 2018 +0200| [716ab0f2f4567ad1838be7c69f7b5e0ae783fc04] | committer: Michael Niedermayer avcodec/jpeg2000dec: Fix undefined shift in the jpeg2000_decode_packets_po_iteration() CPRL case Fixes: shift exponent 47 is too lar

[FFmpeg-cvslog] avcodec/wavpack: Fix integer overflow in DEC_MED() / INC_MED()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri Apr 27 21:44:07 2018 +0200| [bb7b9238b4121e608d98b6cef9272276ea74d59d] | committer: Michael Niedermayer avcodec/wavpack: Fix integer overflow in DEC_MED() / INC_MED() Fixes: runtime error: signed integer overflow: 2147483637 + 128 cannot

[FFmpeg-cvslog] avcodec/jpeg2000dec: Skip init for component in CPRL if nothing is to be done

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri May 4 19:11:36 2018 +0200| [083c48e6d9dbc1c390146422ddcdc2d25278e3a4] | committer: Michael Niedermayer avcodec/jpeg2000dec: Skip init for component in CPRL if nothing is to be done Fixes: assertion failure Fixes: 7949/clusterfuzz-testc

[FFmpeg-cvslog] lavf/http.c: Free allocated client URLContext in case of error.

ffmpeg | branch: release/3.3 | Stephan Holljes | Fri Jan 12 19:16:29 2018 +0100| [2d975fff05488e64999360eb775c5a8219a05958] | committer: Michael Niedermayer lavf/http.c: Free allocated client URLContext in case of error. Signed-off-by: Stephan Holljes Signed-off-by: Michael Niedermayer (cher

[FFmpeg-cvslog] avcodec/ffv1enc: Check that the crc + version combination is supported

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sat Apr 21 22:19:31 2018 +0200| [bcc47312d4fd7b4ccedca400e9ea9d650a77f4bb] | committer: Michael Niedermayer avcodec/ffv1enc: Check that the crc + version combination is supported The crc flag is only stored since version 3 thus before this c

[FFmpeg-cvslog] swresample/arm: remove unintentional relocation.

ffmpeg | branch: release/3.3 | Rahul Chaudhry | Wed Apr 18 16:29:39 2018 -0700| [f322de901d2d76af952385cadbaf2181b7cc3986] | committer: Michael Niedermayer swresample/arm: remove unintentional relocation. Branch to global symbol results in reference to PLT, and when compiling for THUMB-2 - in

[FFmpeg-cvslog] avcodec/error_resilience: Fix integer overflow in filter181()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sun Apr 22 21:46:05 2018 +0200| [986747c9e25db3ac45bb4d8f6c73044080768b56] | committer: Michael Niedermayer avcodec/error_resilience: Fix integer overflow in filter181() Fixes: runtime error: signed integer overflow: 197710 * 10923 cannot be

[FFmpeg-cvslog] avformat/mov: Break out of inner loop early in mov_estimate_video_delay()

ffmpeg | branch: release/4.0 | Michael Niedermayer | Wed Jul 11 02:17:58 2018 +0200| [6b65f46673d8efa3d9323307f000ba32c95f94d8] | committer: Michael Niedermayer avformat/mov: Break out of inner loop early in mov_estimate_video_delay() 0.266 <- 0.299 sec (this is time ffmpeg so containing alot

[FFmpeg-cvslog] avcodec/vp8_parser: Do not leave data/size uninitialized

ffmpeg | branch: release/4.0 | Michael Niedermayer | Fri Jul 6 12:01:46 2018 +0200| [fc92ca5b8e3bf5110f89f37c5abf213ce75f5266] | committer: Michael Niedermayer avcodec/vp8_parser: Do not leave data/size uninitialized This is identical to what the VP9 parser does Fixes: 9215/clusterfuzz-test

[FFmpeg-cvslog] avcodec/dvdsub_parser: Init output buf/size

ffmpeg | branch: release/4.0 | Michael Niedermayer | Fri Jul 13 18:54:48 2018 +0200| [40ed40902ade1fa6294e12d853cf06f30f85b8cb] | committer: Michael Niedermayer avcodec/dvdsub_parser: Init output buf/size No testcase Signed-off-by: Michael Niedermayer (cherry picked from commit 9e6c843776166

[FFmpeg-cvslog] avcodec/mjpegdec: Check for odd progressive RGB

ffmpeg | branch: release/4.0 | Michael Niedermayer | Fri Jul 6 16:28:14 2018 +0200| [d8c4b2ae57e0035c07bc8ed8ea2fe21ae9619699] | committer: Michael Niedermayer avcodec/mjpegdec: Check for odd progressive RGB Fixes: out of array access Fixes: 9225/clusterfuzz-testcase-minimized-ffmpeg_AV_CODE

[FFmpeg-cvslog] avcodec/dvdsub_parser: Allocate input padding

ffmpeg | branch: release/4.0 | Michael Niedermayer | Fri Jul 13 18:56:10 2018 +0200| [3ef38c414e7908b2f66552081efe485bce52037c] | committer: Michael Niedermayer avcodec/dvdsub_parser: Allocate input padding Fixes: out of array read Fixes: 9350/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID

[FFmpeg-cvslog] avcodec/dirac_dwt_template: Fix signedness regression in interleave()

ffmpeg | branch: release/4.0 | Michael Niedermayer | Fri Jul 13 18:33:08 2018 +0200| [0561cde1289b35272ce1913bd5cb024ade22d6c4] | committer: Michael Niedermayer avcodec/dirac_dwt_template: Fix signedness regression in interleave() Found-by: Tested-by: James Darnley Signed-off-by: Michael Nie

[FFmpeg-cvslog] avformat/mov: Simplify last element computation in mov_estimate_video_delay()

ffmpeg | branch: release/4.0 | Michael Niedermayer | Wed Jul 11 02:17:57 2018 +0200| [670b565ba2b1074290b4a5bcf6f4c6ff55e9c68c] | committer: Michael Niedermayer avformat/mov: Simplify last element computation in mov_estimate_video_delay() Reviewed-by: Derek Buitenhuis Reviewed-by: Sasi Inguva

[FFmpeg-cvslog] avformat/movenc: Check input sample count

ffmpeg | branch: release/4.0 | Michael Niedermayer | Fri Jul 6 22:23:25 2018 +0200| [0981dfee7d413ec6f30f00ddb109e3959c05bebd] | committer: Michael Niedermayer avformat/movenc: Check input sample count Fixes: division by 0 Fixes: fpe_movenc.c_199_1.wav Fixes: fpe_movenc.c_199_2.wav Fixes: fpe

[FFmpeg-cvslog] swresample/arm: rename labels to fix xcode build error

ffmpeg | branch: release/4.0 | Rahul Chaudhry | Fri Apr 27 13:49:52 2018 -0700| [5db47b3983ef23c1676ddcd7a88c22b5f38b0230] | committer: Michael Niedermayer swresample/arm: rename labels to fix xcode build error Signed-off-by: Michael Niedermayer (cherry picked from commit e84212b78e00df17799e

[FFmpeg-cvslog] avformat/asfdec_o: Check size_bmp more fully

ffmpeg | branch: release/4.0 | Michael Niedermayer | Tue Jul 3 21:01:23 2018 +0200| [a21703ca5d42e91b3a218e755020e90ef3af2eae] | committer: Michael Niedermayer avformat/asfdec_o: Check size_bmp more fully Fixes: integer overflow and out of array access Fixes: asfo-crash-46080c4341572a7137a162

[FFmpeg-cvslog] avformat/mov: Eliminate variable buf_size from mov_estimate_video_delay()

ffmpeg | branch: release/4.0 | Michael Niedermayer | Wed Jul 11 02:17:56 2018 +0200| [052edeec55fdcc977f1e3e7d89c9b616ae461a82] | committer: Michael Niedermayer avformat/mov: Eliminate variable buf_size from mov_estimate_video_delay() Reviewed-by: Derek Buitenhuis Reviewed-by: Sasi Inguva Si

[FFmpeg-cvslog] avformat/pva: Check for EOF before retrying in read_part_of_packet()

ffmpeg | branch: release/4.0 | Michael Niedermayer | Tue Jul 3 22:14:42 2018 +0200| [6f4b82cc3a879f5d3f9a4738bfd7d93757221958] | committer: Michael Niedermayer avformat/pva: Check for EOF before retrying in read_part_of_packet() Fixes: Infinite loop Fixes: pva-4b1835dbc2027bf3c567005dcc78e851

[FFmpeg-cvslog] avformat/movenc: Write version 2 of audio atom if channels is not known

ffmpeg | branch: release/4.0 | Michael Niedermayer | Sun Jul 8 00:16:42 2018 +0200| [fd53179f4a71e0acd807bdfff112a55e204fa4ba] | committer: Michael Niedermayer avformat/movenc: Write version 2 of audio atom if channels is not known The version 1 needs the channel count and would divide by 0 F

[FFmpeg-cvslog] avformat/mov: remove modulo operations from mov_estimate_video_delay()

ffmpeg | branch: release/4.0 | Michael Niedermayer | Wed Jul 11 02:17:55 2018 +0200| [48479937c3e92cf0056ab99e215e29e29b61f929] | committer: Michael Niedermayer avformat/mov: remove modulo operations from mov_estimate_video_delay() 0.324 <-0.491 sec Reviewed-by: Derek Buitenhuis Reviewed-by:

[FFmpeg-cvslog] avformat/mms: Add missing chunksize check

ffmpeg | branch: release/4.0 | Michael Niedermayer | Tue Jul 3 20:33:04 2018 +0200| [6d992a51c75aafba6e21bff95cddae9d717bc7e3] | committer: Michael Niedermayer avformat/mms: Add missing chunksize check Fixes: out of array read Fixes: mms-crash-01b6c5d85f9d9f40f4e879896103e9f5b222816a Found-b

[FFmpeg-cvslog] avformat/rmdec: Do not pass mime type in rm_read_multi() to ff_rm_read_mdpr_codecdata()

ffmpeg | branch: release/4.0 | Michael Niedermayer | Tue Jul 3 21:37:46 2018 +0200| [37f505cc853f592d93b6285c8a91eece2e5b8b07] | committer: Michael Niedermayer avformat/rmdec: Do not pass mime type in rm_read_multi() to ff_rm_read_mdpr_codecdata() Fixes: use after free() Fixes: rmdec-crash-f

[FFmpeg-cvslog] avcodec/mpeg4videodec: Check for bitstream end in read_quant_matrix_ext()

ffmpeg | branch: release/4.0 | Michael Niedermayer | Tue Jul 3 22:48:32 2018 +0200| [4439d6aa6956453f6f5479020ee71baebbec4287] | committer: Michael Niedermayer avcodec/mpeg4videodec: Check for bitstream end in read_quant_matrix_ext() Fixes: out of array read Fixes: asff-crash-0e53d0dc491dfdd5

[FFmpeg-cvslog] avformat/mxfdec: Fix av_log context

ffmpeg | branch: release/4.0 | Michael Niedermayer | Tue Jul 3 20:38:06 2018 +0200| [a28ab09e2a2ac3fcc61e77ff5d702d9157eb37bc] | committer: Michael Niedermayer avformat/mxfdec: Fix av_log context Fixes: out of array access Fixes: mxf-crash-1c2e59bf07a34675bfb3ada5e1ec22fa9f38f923 Found-by: P

[FFmpeg-cvslog] avcodec/mpeg4videodec: Remove use of FF_PROFILE_MPEG4_SIMPLE_STUDIO as indicator of studio profile

ffmpeg | branch: release/4.0 | Michael Niedermayer | Tue Jul 3 00:27:04 2018 +0200| [5fd1dce39a70340b9fd508154e48985902602e25] | committer: Michael Niedermayer avcodec/mpeg4videodec: Remove use of FF_PROFILE_MPEG4_SIMPLE_STUDIO as indicator of studio profile The profile field is changed by c

[FFmpeg-cvslog] avcodec/indeo4: Check for end of bitstream in decode_mb_info()

ffmpeg | branch: release/4.0 | Michael Niedermayer | Mon Jul 2 01:26:44 2018 +0200| [3bf80c7b223ed06b32e215fd743fbe2eb5d61459] | committer: Michael Niedermayer avcodec/indeo4: Check for end of bitstream in decode_mb_info() Fixes: Timeout Fixes: 8776/clusterfuzz-testcase-minimized-ffmpeg_AV_C

[FFmpeg-cvslog] avcodec/shorten: Fix undefined integer overflow

ffmpeg | branch: release/4.0 | Michael Niedermayer | Mon Jul 2 19:08:54 2018 +0200| [c4b23793d4fe679168ffba993ef1469491521233] | committer: Michael Niedermayer avcodec/shorten: Fix undefined integer overflow Fixes: signed integer overflow: 8454144 * 256 cannot be represented in type 'int' Fi

[FFmpeg-cvslog] avcodec/ac3dec: Check channel_map index

ffmpeg | branch: release/4.0 | Michael Niedermayer | Wed Jun 27 15:56:18 2018 +0200| [1361e4abb81f28ac73cc41ae6bf94c045bbb7eee] | committer: Michael Niedermayer avcodec/ac3dec: Check channel_map index Fixes: out of array read Fixes: 8924/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_EAC3_

[FFmpeg-cvslog] avcodec/shorten: Fix undefined addition in shorten_decode_frame()

ffmpeg | branch: release/4.0 | Michael Niedermayer | Mon Jul 2 19:11:46 2018 +0200| [de0a1d01baae5fe40b3d6c0b3357f49654968f13] | committer: Michael Niedermayer avcodec/shorten: Fix undefined addition in shorten_decode_frame() Fixes: signed integer overflow: 1139785606 + 1454196085 cannot be r

[FFmpeg-cvslog] avcodec/jpeg2000dec: Fixes invalid shifts in jpeg2000_decode_packets_po_iteration()

ffmpeg | branch: release/4.0 | Michael Niedermayer | Mon Jul 2 18:57:05 2018 +0200| [e21e5c95c1ceeaf7ca2dd818fd334074ff0148f8] | committer: Michael Niedermayer avcodec/jpeg2000dec: Fixes invalid shifts in jpeg2000_decode_packets_po_iteration() Fixes: shift exponent 47 is too large for 32-bit

  1   2   >