PR #23296 opened by michaelni URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/23296 Patch URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/23296.patch
Fixes: 498236160/clusterfuzz-testcase-minimized-ffmpeg_dem_MOV_fuzzer-4526018559016960 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <[email protected]> >From 92bae0539e9f93edd6e780bbd959406aa1e7009f Mon Sep 17 00:00:00 2001 From: Michael Niedermayer <[email protected]> Date: Sun, 31 May 2026 05:14:14 +0200 Subject: [PATCH] avformat/mov: avoid signed overflow negating time_offset Fixes: 498236160/clusterfuzz-testcase-minimized-ffmpeg_dem_MOV_fuzzer-4526018559016960 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <[email protected]> --- libavformat/mov.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/libavformat/mov.c b/libavformat/mov.c index d0d4910676..b5e48236ca 100644 --- a/libavformat/mov.c +++ b/libavformat/mov.c @@ -4825,7 +4825,7 @@ static void mov_build_index(MOVContext *mov, AVStream *st) sc->time_offset = start_time - (uint64_t)empty_duration; sc->min_corrected_pts = start_time; if (!mov->advanced_editlist) - current_dts = -sc->time_offset; + current_dts = -av_clip64(sc->time_offset, -INT64_MAX, INT64_MAX); } if (!multiple_edits && !mov->advanced_editlist && -- 2.52.0 _______________________________________________ ffmpeg-devel mailing list -- [email protected] To unsubscribe send an email to [email protected]
