> -----Original Message----- > From: ffmpeg-devel <ffmpeg-devel-boun...@ffmpeg.org> On Behalf Of Michael > Niedermayer > Sent: 2024年3月20日 21:02 > To: FFmpeg development discussions and patches <ffmpeg-devel@ffmpeg.org> > Subject: Re: [FFmpeg-devel] [PATCH 3/3] Revert "avcodec/h264_mp4toannexb_bsf: > fix missing PS before IDR frames" > > On Wed, Mar 20, 2024 at 02:41:05PM +0800, Zhao Zhili wrote: > > > > > > > On Mar 20, 2024, at 10:19, Michael Niedermayer <mich...@niedermayer.cc> > > > wrote: > > > > > > This reverts commit d3aa0cd16f5e952bc346b7c74b4dcba95151a63a. > > > > > > Fixes: out of array write > > > Fixes: > > > 64407/clusterfuzz-testcase-minimized-ffmpeg_BSF_H264_MP4TOANNEXB_fuzzer-4966763443650560 > > > > > > The bsf code performs 2 iterations, the first counts how much space is > > > needed > > > than allocates > > > and the 2nd pass copies into teh allocated space > > > > > > The reverted code reallocates sps/pps in the first pass in a data > > > dependant way that leaves > > > the 2nd pass in a different state then the first > > > > Sorry for the break. How to access the fuzz report details? > > ossfuzz made this one public already > https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=64407
I can't open the "Detailed Report" link. Does it provide asan details? I'm currently tied up with daily jobs, I need time to learn how to use oss-fuzz. Feel free to revert the commit. I would be very grateful if anyone has a quick fix for it. Broken file is less severity than heap-buffer-overflow, but still a serious problem. > > thx > > [...] > -- > Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB > > Modern terrorism, a quick summary: Need oil, start war with country that > has oil, kill hundread thousand in war. Let country fall into chaos, > be surprised about raise of fundamantalists. Drop more bombs, kill more > people, be surprised about them taking revenge and drop even more bombs > and strip your own citizens of their rights and freedoms. to be continued _______________________________________________ ffmpeg-devel mailing list ffmpeg-devel@ffmpeg.org https://ffmpeg.org/mailman/listinfo/ffmpeg-devel To unsubscribe, visit link above, or email ffmpeg-devel-requ...@ffmpeg.org with subject "unsubscribe".