This is an automated email from the git hooks/post-receive script. Git pushed a commit to branch release/8.1 in repository ffmpeg.
commit ccae7f536bee0d3e4b953dbebdaa12d06ef98cf4 Author: Franciszek Kalinowski <[email protected]> AuthorDate: Tue May 19 09:34:01 2026 +0200 Commit: Michael Niedermayer <[email protected]> CommitDate: Sun Jun 14 04:40:52 2026 +0200 avformat/rtpenc_xiph: bail out when the max payload size underflows Reported by Franciszek Kalinowski (isec.pl / striga.ai) and Bartosz Smigielski. (cherry picked from commit 085714182302333dd83dcb9c36cf828dc4eba929) Signed-off-by: Michael Niedermayer <[email protected]> --- libavformat/rtpenc_xiph.c | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/libavformat/rtpenc_xiph.c b/libavformat/rtpenc_xiph.c index 00c29a7d02..afea1eb79f 100644 --- a/libavformat/rtpenc_xiph.c +++ b/libavformat/rtpenc_xiph.c @@ -38,6 +38,10 @@ void ff_rtp_send_xiph(AVFormatContext *s1, const uint8_t *buff, int size) uint8_t *q; max_pkt_size = s->max_payload_size - 6; // ident+frag+tdt/vdt+pkt_num+pkt_length + if (max_pkt_size <= 0) { + av_log(s1, AV_LOG_ERROR, "Max payload size too small for Xiph RTP\n"); + return; + } // set xiph data type switch (*buff) { _______________________________________________ ffmpeg-cvslog mailing list -- [email protected] To unsubscribe send an email to [email protected]
