On 7 January 2012 00:27, Janne Grunau <[email protected]> wrote: > On 2012-01-05 22:29:38 +0100, Kostya Shishkov wrote: >> >> I strongly suspect that this situation deserves an error message. >> Additionally, it can be handled better: we should check read value to >> be less that num_vectors >> to make sure we always read correct vector. > > done > >> Also I'd check num_vectors to be in range 0..256 on its init (line 804-805). > > done > > Janne > ---8<--- > Fixes null pointer dereferences in fuzzed files found by Oana Stratulat. > > Signed-off-by: Janne Grunau <[email protected]> > --- > libavcodec/indeo3.c | 22 ++++++++++++++++++---- > 1 files changed, 18 insertions(+), 4 deletions(-)
LGTM _______________________________________________ libav-devel mailing list [email protected] https://lists.libav.org/mailman/listinfo/libav-devel
