[FFmpeg-cvslog] avcodec/mlpdsp: Fix runtime error: signed integer overflow: -24419392 * 128 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 21 02:42:12 2017 +0200| [1d04fc94e1021b70e542dc01a48b8398c6fc6325] | committer: Michael Niedermayer avcodec/mlpdsp: Fix runtime error: signed integer overflow: -24419392 * 128 cannot be represented in type 'int' Fixes: 1711/c

[FFmpeg-cvslog] avcodec/takdec: Fix runtime error: left shift of negative value -63

ffmpeg | branch: master | Michael Niedermayer | Sun May 21 02:46:55 2017 +0200| [d66193252b4067144f11211f8f3e1d5a50146235] | committer: Michael Niedermayer avcodec/takdec: Fix runtime error: left shift of negative value -63 Fixes: 1713/clusterfuzz-testcase-minimized-5791887476654080 Found-by

[FFmpeg-cvslog] avcodec/aac_defines: Fix: runtime error: left shift of negative value -2

ffmpeg | branch: master | Michael Niedermayer | Sun May 21 02:51:04 2017 +0200| [c3547dcbc326474745f02a618e01848a293f3f92] | committer: Michael Niedermayer avcodec/aac_defines: Fix: runtime error: left shift of negative value -2 Fixes: 1716/clusterfuzz-testcase-minimized-4691012196761600

[FFmpeg-cvslog] avcodec/wavpack: Fix multiple runtime error: signed integer overflow: 548 * -2147483648 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Thu May 18 02:13:10 2017 +0200| [3b09d7c264f35ac35a70aeb6b4f076502aa18203] | committer: Michael Niedermayer avcodec/wavpack: Fix multiple runtime error: signed integer overflow: 548 * -2147483648 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/takdec: Fix runtime error: signed integer overflow: 8192 * 524308 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Wed May 17 00:07:02 2017 +0200| [955db411929a9876d3cd016fbbb9c49b6362feba] | committer: Michael Niedermayer avcodec/takdec: Fix runtime error: signed integer overflow: 8192 * 524308 cannot be represented in type 'int' Fixes: 1630/c

[FFmpeg-cvslog] avcodec/vmnc: Check location before use

ffmpeg | branch: master | Michael Niedermayer | Sun May 21 13:22:16 2017 +0200| [ec2b76aab44f55be22eb12d86eb0dfd2eff68581] | committer: Michael Niedermayer avcodec/vmnc: Check location before use Fixes: runtime error: signed integer overflow: 65535 * 64256 cannot be represented in type 

[FFmpeg-cvslog] avcodec/vp9block: fix runtime error: signed integer overflow: 196675 * 20670 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 21 02:12:21 2017 +0200| [d4ee76780869c659a5d3b0815c56024ab260a81d] | committer: Michael Niedermayer avcodec/vp9block: fix runtime error: signed integer overflow: 196675 * 20670 cannot be represented in type 'int' Fixes: 1710/c

[FFmpeg-cvslog] avcodec/mpeg4videodec: Check for multiple VOL headers

ffmpeg | branch: master | Michael Niedermayer | Sun May 21 16:01:27 2017 +0200| [efeb47fd5d5cbf980e52a6d5e741c3c74b94b5e2] | committer: Michael Niedermayer avcodec/mpeg4videodec: Check for multiple VOL headers Fixes multiple: runtime error: signed integer overflow: 2147115008 + 413696 cannot

[FFmpeg-cvslog] avcodec/aacdec_fixed: Fix runtime error: shift exponent 34 is too large for 32-bit type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 21 16:53:55 2017 +0200| [b5228e44c7f3a5eba537c8a39a45cfbf2961a28d] | committer: Michael Niedermayer avcodec/aacdec_fixed: Fix runtime error: shift exponent 34 is too large for 32-bit type 'int' Fixes: 1721/clusterfuzz-testcase

[FFmpeg-cvslog] avcodec/mjpegdec: Fix runtime error: signed integer overflow: -32767 * 130560 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 21 21:49:54 2017 +0200| [40fa6a2fa2c255293a780a194eecae5df52644a1] | committer: Michael Niedermayer avcodec/mjpegdec: Fix runtime error: signed integer overflow: -32767 * 130560 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/dct32_template: Fix runtime error: signed integer overflow: -1071326067 - 1088238847 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 21 23:35:21 2017 +0200| [a1cbf53c566b84a5974f516076cbc36c188f6d08] | committer: Michael Niedermayer avcodec/dct32_template: Fix runtime error: signed integer overflow: -1071326067 - 1088238847 cannot be represented in type 'int&#x

[FFmpeg-cvslog] avcodec/ivi_dsp: Fix multiple runtime error: left shift of negative value -71

ffmpeg | branch: master | Michael Niedermayer | Mon May 22 01:19:50 2017 +0200| [8fb00b3e858b7a5aeccfe6bdfc10290c2121c3ec] | committer: Michael Niedermayer avcodec/ivi_dsp: Fix multiple runtime error: left shift of negative value -71 Fixes: 1734/clusterfuzz-testcase-minimized-5385630815092736

[FFmpeg-cvslog] avcodec/mlpdec: Fix runtime error: shift exponent -5 is negative

ffmpeg | branch: master | Michael Niedermayer | Sat May 20 23:01:03 2017 +0200| [42e42af76cff46c4e1a41dd8de992b38880f78be] | committer: Michael Niedermayer avcodec/mlpdec: Fix runtime error: shift exponent -5 is negative Fixes part of 1708/clusterfuzz-testcase-minimized-5035111957397504

[FFmpeg-cvslog] avcodec/escape124: Check depth against num_superblocks

ffmpeg | branch: master | Michael Niedermayer | Sat May 20 23:01:02 2017 +0200| [da617408c80afd2ea67a175fabc0ba546b9b04bc] | committer: Michael Niedermayer avcodec/escape124: Check depth against num_superblocks Fixes: runtime error: left shift of 66184 by 15 places cannot be represented in

[FFmpeg-cvslog] avcodec/takdec: Fix multiple runtime error: signed integer overflow: -512 * 4563386 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sat May 20 17:52:21 2017 +0200| [64d0dad93c18a517e92d152fdf7cbf92f1cf0a68] | committer: Michael Niedermayer avcodec/takdec: Fix multiple runtime error: signed integer overflow: -512 * 4563386 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/takdec: Fix runtime error: signed integer overflow: 2146548196 + 2156738 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Mon May 22 22:19:23 2017 +0200| [f95f9f975598262d7acdf9f4611bd1e775203f7b] | committer: Michael Niedermayer avcodec/takdec: Fix runtime error: signed integer overflow: 2146548196 + 2156738 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/takdec: Fix runtime error: left shift of negative value -360

ffmpeg | branch: master | Michael Niedermayer | Mon May 22 21:43:01 2017 +0200| [0ce7cf0c86a2744ddfe21cb0983ff572ed07ab69] | committer: Michael Niedermayer avcodec/takdec: Fix runtime error: left shift of negative value -360 Fixes: 1739/clusterfuzz-testcase-minimized-5399237707694080 Found

[FFmpeg-cvslog] avcodec/xsubdec: Check that RLE coded image and colors fit in the buffer

ffmpeg | branch: master | Michael Niedermayer | Tue May 23 00:20:25 2017 +0200| [2002436b0c914e18eda4f45ef816b14501a1dbae] | committer: Michael Niedermayer avcodec/xsubdec: Check that RLE coded image and colors fit in the buffer Fixes: Timeout Fixes: 1747/clusterfuzz-testcase-minimized

[FFmpeg-cvslog] avcodec/ffv1dec_template: Fix runtime error: signed integer overflow: 202 + 2147483615 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Tue May 23 03:24:49 2017 +0200| [9726e9f80934202e761870e95d40e8c591208459] | committer: Michael Niedermayer avcodec/ffv1dec_template: Fix runtime error: signed integer overflow: 202 + 2147483615 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/g723_1: Fix runtime error: signed integer overflow: -1013481472 + -1139123755 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Tue May 23 03:43:51 2017 +0200| [504d5804ac5337f35d16aacbef5f7eb5348434e9] | committer: Michael Niedermayer avcodec/g723_1: Fix runtime error: signed integer overflow: -1013481472 + -1139123755 cannot be represented in type 'int' S

[FFmpeg-cvslog] avcodec/asvdec: Check buf_size

ffmpeg | branch: master | Michael Niedermayer | Mon May 22 23:53:53 2017 +0200| [cfd1ecdc0bb039014fbb40b45edb88121bad92f9] | committer: Michael Niedermayer avcodec/asvdec: Check buf_size Fixes Timeout Fixes: 1746/clusterfuzz-testcase-minimized-6687393392361472 Found-by: continuous fuzzing

[FFmpeg-cvslog] avcodec/aacdec_fixed: Fix multiple runtime error: shift exponent 127 is too large for 32-bit type 'int'

ffmpeg | branch: master | Michael Niedermayer | Tue May 23 12:40:22 2017 +0200| [620b452a118a6a2345addb4e1d8abf36ad8d1bab] | committer: Michael Niedermayer avcodec/aacdec_fixed: Fix multiple runtime error: shift exponent 127 is too large for 32-bit type 'int' Fixes: 1762/clusterfuz

[FFmpeg-cvslog] avcodec/lagarith: Fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Tue May 23 14:34:00 2017 +0200| [948b54763b6c851b2a0bec6702cd9c419065fdb6] | committer: Michael Niedermayer avcodec/lagarith: Fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int' Fixes: 1764/clusterfuz

[FFmpeg-cvslog] avcodec/celp_filters: Fix runtime error: signed integer overflow: 1892453989 + 381702783 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Tue May 23 14:50:55 2017 +0200| [fb75ad79cb8a00d42857b252e0049a0bbe90da66] | committer: Michael Niedermayer avcodec/celp_filters: Fix runtime error: signed integer overflow: 1892453989 + 381702783 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/jpeglsdec: Check get_bits_left() before decoding a picture

ffmpeg | branch: master | Michael Niedermayer | Tue May 23 22:18:52 2017 +0200| [4bc3008d04451cd31818e21703ed7ed96b6ff074] | committer: Michael Niedermayer avcodec/jpeglsdec: Check get_bits_left() before decoding a picture Signed-off-by: Michael Niedermayer > http://git.videolan.

[FFmpeg-cvslog] avcodec/wavpack: Fix runtime error: left shift of negative value -1

ffmpeg | branch: master | Michael Niedermayer | Wed May 24 19:53:57 2017 +0200| [bce362d36ccfe8f778662bcfd956187c958a39b5] | committer: Michael Niedermayer avcodec/wavpack: Fix runtime error: left shift of negative value -1 Fixes: 1807/clusterfuzz-testcase-minimized-6258676199325696 Found-by

[FFmpeg-cvslog] avcodec/jpeg2000dec: Check tile offsets

ffmpeg | branch: master | Michael Niedermayer | Wed May 24 19:40:42 2017 +0200| [89325417e7b33f4b08171d9d609c48662d96b2d3] | committer: Michael Niedermayer avcodec/jpeg2000dec: Check tile offsets Fixes: runtime error: signed integer overflow: 4096 - -2147483648 cannot be represented in type

[FFmpeg-cvslog] avcodec/cllc: Check bitstream end before decoding pixels

ffmpeg | branch: master | Michael Niedermayer | Wed May 24 19:52:00 2017 +0200| [cfec0d64752509f8ac798acca6225df630fa5284] | committer: Michael Niedermayer avcodec/cllc: Check bitstream end before decoding pixels Fixes timeout Fixes: 1802/clusterfuzz-testcase-minimized-5008293510512640 Found

[FFmpeg-cvslog] avcodec/jpeg2000dec: Fix copy and paste error

ffmpeg | branch: master | Michael Niedermayer | Thu May 25 11:11:33 2017 +0200| [5782e0ba8cc30bb08a806cdeda1adfb89a0556b4] | committer: Michael Niedermayer avcodec/jpeg2000dec: Fix copy and paste error Found-by: jamrial Signed-off-by: Michael Niedermayer > http://git.videolan.org/gitweb.

[FFmpeg-cvslog] avcodec/wavpack: Fix runtime error: left shift of negative value -14778

ffmpeg | branch: master | Michael Niedermayer | Wed May 24 00:21:21 2017 +0200| [ea71a48c7e8a76ee447fa518cca087df9288288d] | committer: Michael Niedermayer avcodec/wavpack: Fix runtime error: left shift of negative value -14778 Fixes: 1778/clusterfuzz-testcase-minimized-5128953268273152

[FFmpeg-cvslog] avcodec/wavpack: Fix: runtime error: signed integer overflow: 3 * -2147483648 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Wed May 24 00:21:20 2017 +0200| [5f91786fc8ad9b4108e09e6cbf119d95c8ac4db7] | committer: Michael Niedermayer avcodec/wavpack: Fix: runtime error: signed integer overflow: 3 * -2147483648 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/tscc2: Skip duplicate frames

ffmpeg | branch: master | Michael Niedermayer | Sun May 21 15:34:21 2017 +0200| [4dc3714c48e74e75a3a9c7d9fb52fd5917107508] | committer: Michael Niedermayer avcodec/tscc2: Skip duplicate frames This turns CFR duplicated frames into skiped frames Fixes: Timeout Fixes: 1719/clusterfuzz-testcase

[FFmpeg-cvslog] avcodec/diracdec: Fix off by 1 error in quant check

ffmpeg | branch: master | Michael Niedermayer | Thu May 25 16:35:40 2017 +0200| [b946bd8ef2c7aeee09469a4901182a44f9b67189] | committer: Michael Niedermayer avcodec/diracdec: Fix off by 1 error in quant check Fixes: out of array read Fixes: 1781/clusterfuzz-testcase-minimized-4617176877105152

[FFmpeg-cvslog] avcodec/diracdec: Factor quant matrix reads

ffmpeg | branch: master | Michael Niedermayer | Thu May 25 16:22:49 2017 +0200| [6d6fc4105b871490068958ded491dbb8b19c65be] | committer: Michael Niedermayer avcodec/diracdec: Factor quant matrix reads Signed-off-by: Michael Niedermayer > http://git.videolan.org/gitweb.cgi/ffmpeg.git

[FFmpeg-cvslog] avcodec/smc: Check remaining input

ffmpeg | branch: master | Michael Niedermayer | Thu May 25 20:07:49 2017 +0200| [356194fcb17375de2472f4cbff6ede48d6a374b2] | committer: Michael Niedermayer avcodec/smc: Check remaining input Fixes: Timeout Fixes: 1818/clusterfuzz-testcase-minimized-5039166473633792 Found-by: continuous

[FFmpeg-cvslog] avcodec/aacdec_fixed: Fix runtime error: signed integer overflow: -2147483648 * -1 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Thu May 25 23:01:27 2017 +0200| [8e87d146d798ca25d8f3a4520a6deb7946b39d73] | committer: Michael Niedermayer avcodec/aacdec_fixed: Fix runtime error: signed integer overflow: -2147483648 * -1 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/clearvideo: Check buf_size before decoding frame

ffmpeg | branch: master | Michael Niedermayer | Fri May 26 01:37:14 2017 +0200| [43c394dcaebe9eec5802b420f273385473380909] | committer: Michael Niedermayer avcodec/clearvideo: Check buf_size before decoding frame Fixes; Timeout Fixes: 1826/clusterfuzz-testcase-minimized-5728569256837120

[FFmpeg-cvslog] avformat/mux: Fix copy an paste typo

ffmpeg | branch: master | Michael Niedermayer | Fri May 26 18:01:31 2017 +0200| [1a36354698fc0453ba4d337786d2cb4d3e374cfb] | committer: Michael Niedermayer avformat/mux: Fix copy an paste typo Found-by: Roger Scott Signed-off-by: Michael Niedermayer > http://git.videolan.org/gitweb.

[FFmpeg-cvslog] avcodec/ra144dec: Fix runtime error: left shift of negative value -17

ffmpeg | branch: master | Michael Niedermayer | Sat May 27 13:07:00 2017 +0200| [53c0c637d36c1de9ea461a8d863e8703da090894] | committer: Michael Niedermayer avcodec/ra144dec: Fix runtime error: left shift of negative value -17 Fixes: 1830/clusterfuzz-testcase-minimized-5828293733384192 Found

[FFmpeg-cvslog] avcodec/mlpdec: Do not leave invalid values in matrix_out_ch[] on error

ffmpeg | branch: master | Michael Niedermayer | Sat May 27 13:17:34 2017 +0200| [ac8dfcbd89a818b786d05ebc1af70f7bf6aeb86e] | committer: Michael Niedermayer avcodec/mlpdec: Do not leave invalid values in matrix_out_ch[] on error Fixes: runtime error: index 12 out of bounds for type 'uint8

[FFmpeg-cvslog] avcodec/pixlet: Fix runtime error: signed integer overflow: 2147483647 + 32 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sat May 27 13:03:36 2017 +0200| [77d98898211eeb0241e8411428b0b364a6231744] | committer: Michael Niedermayer avcodec/pixlet: Fix runtime error: signed integer overflow: 2147483647 + 32 cannot be represented in type 'int' Fixes: 1829/c

[FFmpeg-cvslog] avcodec/ivi_dsp: Fix runtime error: left shift of negative value -2

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 03:03:46 2017 +0200| [357f2316a08478a4442e8051978c7b161e10281c] | committer: Michael Niedermayer avcodec/ivi_dsp: Fix runtime error: left shift of negative value -2 Fixes: 1839/clusterfuzz-testcase-minimized-6238490993885184 Found-by

[FFmpeg-cvslog] avcodec/libfdk-aacdec: Correct buffer_size parameter

ffmpeg | branch: master | Michael Niedermayer | Thu May 25 03:21:50 2017 +0200| [ca6776a993903dbcfef5ae8a18556c40ecf83e1c] | committer: Michael Niedermayer avcodec/libfdk-aacdec: Correct buffer_size parameter the timeDataSize argument to aacDecoder_DecodeFrame() seems undocumented and until

[FFmpeg-cvslog] avcodec/aacps: Check border_position to be monotone

ffmpeg | branch: master | Michael Niedermayer | Sun May 21 20:46:16 2017 +0200| [fe8c9420dd5bbc7a0c545e479da9118bcf311dd2] | committer: Michael Niedermayer avcodec/aacps: Check border_position to be monotone Fixes: runtime error: left shift of negative value -67108864 Fixes: 1738/clusterfuzz

[FFmpeg-cvslog] avcodec/wnv1: More strict buffer size check

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 03:18:02 2017 +0200| [7f50c25124a015a539823077bb302ff0c7ce8963] | committer: Michael Niedermayer avcodec/wnv1: More strict buffer size check This requires at least 25% of a picture to allocate and decode it Fixes: Timeout Fixes: 1845

[FFmpeg-cvslog] avcodec/sbrdsp_template: Fix: runtime error: signed integer overflow: 849815297 + 1315389781 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Tue May 23 21:08:48 2017 +0200| [7c36ee216f1e668e2c2af1573bd9dbbb2a501f48] | committer: Michael Niedermayer avcodec/sbrdsp_template: Fix: runtime error: signed integer overflow: 849815297 + 1315389781 cannot be represented in type 'int&#x

[FFmpeg-cvslog] avcodec/aacdec_fixed: Fix multiple runtime error: shift exponent 127 is too large for 32-bit type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 03:34:09 2017 +0200| [6c3a63fc3d1be7ac947e38a165a299c9e5d37764] | committer: Michael Niedermayer avcodec/aacdec_fixed: Fix multiple runtime error: shift exponent 127 is too large for 32-bit type 'int' Fixes: 1851/clusterfuz

[FFmpeg-cvslog] avcodec/jpeg2000dec: Check tile offsets more completely

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 13:52:13 2017 +0200| [9c1812491f7be2730351969f4abd9b99d300d604] | committer: Michael Niedermayer avcodec/jpeg2000dec: Check tile offsets more completely Signed-off-by: Michael Niedermayer > http://git.videolan.org/gitweb.

[FFmpeg-cvslog] avcodec/sheervideo: Check input buffer size before allocating and decoding

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 13:30:46 2017 +0200| [d8030c14bd7ac983b81ebe898631979f6b5aea09] | committer: Michael Niedermayer avcodec/sheervideo: Check input buffer size before allocating and decoding Fixes: Timeout Fixes: 1858/clusterfuzz-testcase-minimized

[FFmpeg-cvslog] avcodec/wavpack: Fix runtime error: signed integer overflow: -1386217472 * 4 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 12:56:25 2017 +0200| [c51357d206f2ad58c9d9610cf85b6ea5dd88f501] | committer: Michael Niedermayer avcodec/wavpack: Fix runtime error: signed integer overflow: -1386217472 * 4 cannot be represented in type 'int' Fixes: 1853/c

[FFmpeg-cvslog] avcodec/jpeg2000: Fix runtime error: signed integer overflow: 4185 + 2147483394 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 14:00:30 2017 +0200| [781f88bb26534ececc76eaa972f02536ba2f0f55] | committer: Michael Niedermayer avcodec/jpeg2000: Fix runtime error: signed integer overflow: 4185 + 2147483394 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/snow: Fix runtime error: signed integer overflow: 1086573993 + 1086573994 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 17:12:35 2017 +0200| [b9c032ebc0ad17ac0ffefb915ff96baf9d79cab1] | committer: Michael Niedermayer avcodec/snow: Fix runtime error: signed integer overflow: 1086573993 + 1086573994 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/ylc: Check count in build_vlc()

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 17:20:42 2017 +0200| [67b30decf7793523f7fdaef6fdf7f1179ef42b18] | committer: Michael Niedermayer avcodec/ylc: Check count in build_vlc() Fixes: runtime error: signed integer overflow: 211633430 + 2147483647 cannot be represented in

[FFmpeg-cvslog] avcodec/aacdec_fixed: Fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 18:09:47 2017 +0200| [6b9cb5d26a2d9905093621d12785bc5903dce66d] | committer: Michael Niedermayer avcodec/aacdec_fixed: Fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int' Fixes: 1878/c

[FFmpeg-cvslog] avcodec/aac_defines: Add missing () to AAC_HALF_SUM() macro

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 20:08:49 2017 +0200| [872bac81590ccbec40ba7ad203421d9e38d1b253] | committer: Michael Niedermayer avcodec/aac_defines: Add missing () to AAC_HALF_SUM() macro Fixes: runtime error: shift exponent 1073741848 is too large for 32-bit type

[FFmpeg-cvslog] avcodec/webp: Fixes null pointer dereference

ffmpeg | branch: master | Michael Niedermayer | Wed May 10 18:37:50 2017 +0200| [67020711b7d45afa073ef671f755765035a64373] | committer: Michael Niedermayer avcodec/webp: Fixes null pointer dereference Fixes: 1470/clusterfuzz-testcase-minimized-5404421666111488 Fixes: 1472/clusterfuzz-testcase

[FFmpeg-cvslog] avcodec/truemotion2: Fix passing null pointer to memset()

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 21:54:02 2017 +0200| [c901627918ff7480c1bb6f9cae507ee2c7c933d8] | committer: Michael Niedermayer avcodec/truemotion2: Fix passing null pointer to memset() Fixes part of: 1888/clusterfuzz-testcase-minimized-5237704826552320 Found-by

[FFmpeg-cvslog] avcodec/truemotion2: Fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 21:54:02 2017 +0200| [c9e884f3d98df85bf7f2cf30d71877b22929fdcb] | committer: Michael Niedermayer avcodec/truemotion2: Fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int' Fixes part of: 1888/c

[FFmpeg-cvslog] avcodec/ra144: Fix runtime error: signed integer overflow: 11184810 * 404 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 21:38:24 2017 +0200| [4c472c52525fcab4c80cdbc98b4625d318c84fcb] | committer: Michael Niedermayer avcodec/ra144: Fix runtime error: signed integer overflow: 11184810 * 404 cannot be represented in type 'int' Fixes: 1884/c

[FFmpeg-cvslog] avcodec/ra144: Fix runtime error: signed integer overflow: -2449 * 1398101 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 21:44:32 2017 +0200| [7c845450d2daa0d066045cf94ab51cb496f1b824] | committer: Michael Niedermayer avcodec/ra144: Fix runtime error: signed integer overflow: -2449 * 1398101 cannot be represented in type 'int' Fixes: 1885/c

[FFmpeg-cvslog] avcodec/aacsbr: Fix libavcodec/aacsbr.c:257:59: runtime error: division by zero

ffmpeg | branch: master | Michael Niedermayer | Sun May 28 21:19:23 2017 +0200| [f6ba58d193d965df388224b1b18a6066ee9b4eea] | committer: Michael Niedermayer avcodec/aacsbr: Fix libavcodec/aacsbr.c:257:59: runtime error: division by zero Fixes: 1882/clusterfuzz-testcase-minimized

[FFmpeg-cvslog] tools/target_dec_fuzzer: Move the hwaccel check outside the initialization if

ffmpeg | branch: master | Michael Niedermayer | Mon May 29 03:37:43 2017 +0200| [718f8a01dfa301b2d21eefcd61bdd1988953d0aa] | committer: Michael Niedermayer tools/target_dec_fuzzer: Move the hwaccel check outside the initialization if Signed-off-by: Michael Niedermayer > h

[FFmpeg-cvslog] avcodec/ansi: Fix frame memleak

ffmpeg | branch: master | Michael Niedermayer | Mon May 29 14:07:33 2017 +0200| [e091b9b3c7859030f2896ca2ae96faa3afc694a1] | committer: Michael Niedermayer avcodec/ansi: Fix frame memleak Fixes: 1892/clusterfuzz-testcase-minimized-4519341733183488 Found-by: continuous fuzzing process https

[FFmpeg-cvslog] avcodec/dds: Fix runtime error: left shift of 145 by 24 places cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Mon May 29 13:51:08 2017 +0200| [c49fa2a51452eeba0cf2c14ce999ddeadf69aa4f] | committer: Michael Niedermayer avcodec/dds: Fix runtime error: left shift of 145 by 24 places cannot be represented in type 'int' Fixes: 1891/clusterfuz

[FFmpeg-cvslog] avcodec/jpeg2000dec: Use ff_set_dimensions()

ffmpeg | branch: master | Michael Niedermayer | Mon May 29 13:45:29 2017 +0200| [f3da6fbff864e05e8871dd04222143abdee9e77b] | committer: Michael Niedermayer avcodec/jpeg2000dec: Use ff_set_dimensions() Fixes: OOM Fixes: 1890/clusterfuzz-testcase-minimized-6329019509243904 Found-by: continuous

[FFmpeg-cvslog] avcodec/wavpack: Fix runtime error: signed integer overflow: 24 * -2147483648 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Tue May 30 03:09:11 2017 +0200| [d90c5bf10559554d6f9cd1dfb90767b991b76d5d] | committer: Michael Niedermayer avcodec/wavpack: Fix runtime error: signed integer overflow: 24 * -2147483648 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/wavpack: Check float_shift

ffmpeg | branch: master | Michael Niedermayer | Tue May 30 03:13:21 2017 +0200| [4020b009d1e88ff10abd25fb768165afa546851d] | committer: Michael Niedermayer avcodec/wavpack: Check float_shift Fixes: runtime error: shift exponent 40 is too large for 32-bit type 'unsigned int' F

[FFmpeg-cvslog] avcodec/acelp_pitch_delay: Fix runtime error: value 4.83233e+39 is outside the range of representable values of type 'float'

ffmpeg | branch: master | Michael Niedermayer | Tue May 30 04:03:09 2017 +0200| [87bddba43b725d43767f2a387cdea0936ac1b549] | committer: Michael Niedermayer avcodec/acelp_pitch_delay: Fix runtime error: value 4.83233e+39 is outside the range of representable values of type 'float' F

[FFmpeg-cvslog] avformat/avidec: Fix txts fmts parsing

ffmpeg | branch: master | Michael Niedermayer | Tue May 30 21:20:54 2017 +0200| [78f6ec32a37215f21e1efb299e233f1c0e031a0b] | committer: Michael Niedermayer avformat/avidec: Fix txts fmts parsing Fixes: subtitle.avi from vlc/ticket/1162 Signed-off-by: Michael Niedermayer > h

[FFmpeg-cvslog] avformat/avidec: Limit formats in gab2 to srt and ass/ssa

ffmpeg | branch: master | Michael Niedermayer | Tue May 30 21:29:20 2017 +0200| [a5d849b149ca67ced2d271dc84db0bc95a548abb] | committer: Michael Niedermayer avformat/avidec: Limit formats in gab2 to srt and ass/ssa This prevents part of one exploit leading to an information leak Found-by

[FFmpeg-cvslog] tests/fate/libavcodec: Test with all idct and dct modes supported in the test

ffmpeg | branch: master | Michael Niedermayer | Wed May 31 01:29:57 2017 +0200| [edf686f089d68092c3b17a23cc48667665b5a069] | committer: Michael Niedermayer tests/fate/libavcodec: Test with all idct and dct modes supported in the test Signed-off-by: Michael Niedermayer > h

[FFmpeg-cvslog] avcodec/ra144: Fixes runtime error: signed integer overflow: 7160 * 327138 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Wed May 31 15:52:56 2017 +0200| [08cb69e870c1b2fdc3574780a3662b92bfd6ef79] | committer: Michael Niedermayer avcodec/ra144: Fixes runtime error: signed integer overflow: 7160 * 327138 cannot be represented in type 'int' Fixes: 1908/c

[FFmpeg-cvslog] avcodec/cavsdec: Fix runtime error: signed integer overflow: 59 + 2147483600 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Wed May 31 13:21:58 2017 +0200| [58f8cd4ac576028ef492a005bd06b1f22c3a6879] | committer: Michael Niedermayer avcodec/cavsdec: Fix runtime error: signed integer overflow: 59 + 2147483600 cannot be represented in type 'int' Fixes: 1903/c

[FFmpeg-cvslog] avcodec/pnm: Use ff_set_dimensions()

ffmpeg | branch: master | Michael Niedermayer | Wed May 31 13:39:45 2017 +0200| [a1c0d1d906d27d3f9e1b058bb065f897f90c1c7c] | committer: Michael Niedermayer avcodec/pnm: Use ff_set_dimensions() Fixes: OOM Fixes: 1906/clusterfuzz-testcase-minimized-4599315114754048 Found-by: continuous fuzzing

[FFmpeg-cvslog] avcodec/hevc_ps: Fix runtime error: signed integer overflow: 2147483628 + 256 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Wed May 31 22:02:07 2017 +0200| [6726328f7940a76c43b4d97ac37ababf363d042f] | committer: Michael Niedermayer avcodec/hevc_ps: Fix runtime error: signed integer overflow: 2147483628 + 256 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/cinepak: Check input packet size before frame reallocation

ffmpeg | branch: master | Michael Niedermayer | Wed May 31 22:18:23 2017 +0200| [e47057e932ff9a071d52fa1d5d4a956340eb2475] | committer: Michael Niedermayer avcodec/cinepak: Check input packet size before frame reallocation Reduces time spend decoding 1917/clusterfuzz-testcase-minimized

[FFmpeg-cvslog] avcodec/wavpack: Fix runtime error: signed integer overflow: 2013265955 - -134217694 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Wed May 31 22:53:02 2017 +0200| [a47273c803edfbc43793349b74429ae29b05c003] | committer: Michael Niedermayer avcodec/wavpack: Fix runtime error: signed integer overflow: 2013265955 - -134217694 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/cfhd: Fix runtime error: signed integer overflow: 65280 * 65288 cannot be represented in type 'int'

ffmpeg | branch: master | Michael Niedermayer | Thu Jun 1 18:32:52 2017 +0200| [cd6f319a7470394044627d1bd900e21b9aca5f4a] | committer: Michael Niedermayer avcodec/cfhd: Fix runtime error: signed integer overflow: 65280 * 65288 cannot be represented in type 'int' Fixes: 1925/c

[FFmpeg-cvslog] avcodec/wavpack: Fix runtime error: shift exponent 32 is too large for 32-bit type 'int'

ffmpeg | branch: master | Michael Niedermayer | Thu Jun 1 18:48:37 2017 +0200| [8b3e580b7f436206e84dac89415e057fa9abdab8] | committer: Michael Niedermayer avcodec/wavpack: Fix runtime error: shift exponent 32 is too large for 32-bit type 'int' Fixes: 1967/clusterfuzz-testcase

[FFmpeg-cvslog] avcodec/asvdec: Use rounded up dimenensions in input size check

ffmpeg | branch: master | Michael Niedermayer | Thu Jun 1 20:42:30 2017 +0200| [adb4854aac1767307aa422ae9f5d8fa1ff27c718] | committer: Michael Niedermayer avcodec/asvdec: Use rounded up dimenensions in input size check Fixes: Timeout Fixes: 2001/clusterfuzz-testcase-minimized

[FFmpeg-cvslog] avcodec/tiff: reset sampling[] if its invalid

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon May 15 21:19:06 2017 +0200| [75697b500c3ecfe02f7565673da0ce154868d979] | committer: Michael Niedermayer avcodec/tiff: reset sampling[] if its invalid Fixes divission by 0 Fixes: clusterfuzz-testcase-minimized-5592896440893440 Found-by

[FFmpeg-cvslog] avcodec/svq3: Fix runtime error: left shift of negative value -6

ffmpeg | branch: release/3.3 | Michael Niedermayer | Mon May 15 21:21:20 2017 +0200| [b147ded288ead7b4f22de4add3b8912ae54b406f] | committer: Michael Niedermayer avcodec/svq3: Fix runtime error: left shift of negative value -6 Fixes: 1604/clusterfuzz-testcase-minimized-5312060206350336 Found

[FFmpeg-cvslog] avcodec/truemotion1: Fix multiple runtime error: signed integer overflow: 1246906962 * 2 cannot be represented in type 'int'

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue May 16 03:04:26 2017 +0200| [72e5ccfe3783db37131de3ec4606ba512f98cd97] | committer: Michael Niedermayer avcodec/truemotion1: Fix multiple runtime error: signed integer overflow: 1246906962 * 2 cannot be represented in type 'int&#x

[FFmpeg-cvslog] avcodec/scpr: mask bits to prevent out of array read

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue May 16 02:22:37 2017 +0200| [21d50c185db03349282bc718f8aa4b7bb3d355a2] | committer: Michael Niedermayer avcodec/scpr: mask bits to prevent out of array read Fixes: 1615/clusterfuzz-testcase-minimized-6625214647500800 Found-by

[FFmpeg-cvslog] avcodec/takdec: Fix runtime error: left shift of negative value -42

ffmpeg | branch: release/3.3 | Michael Niedermayer | Wed May 17 00:44:36 2017 +0200| [f34dc82d566cf0789c47fa3c86535e86cf926b8d] | committer: Michael Niedermayer avcodec/takdec: Fix runtime error: left shift of negative value -42 Fixes: 1635/clusterfuzz-testcase-minimized-4992749856096256

[FFmpeg-cvslog] avcodec/mlpdec: Fix runtime error: left shift of negative value -1

ffmpeg | branch: release/3.3 | Michael Niedermayer | Wed May 17 00:53:32 2017 +0200| [6e788fadaee94353f8f24bc3acc0af2a8a9dbffe] | committer: Michael Niedermayer avcodec/mlpdec: Fix runtime error: left shift of negative value -1 Fixes: 1636/clusterfuzz-testcase-minimized-5310494757879808

[FFmpeg-cvslog] avcodec/hq_hqa: Fix: runtime error: signed integer overflow: -255 * 10180917 cannot be represented in type 'int'

ffmpeg | branch: release/3.3 | Michael Niedermayer | Tue May 16 23:44:24 2017 +0200| [b7b28b6aadd43f0feea81f09272e6b4e0f2a0ca1] | committer: Michael Niedermayer avcodec/hq_hqa: Fix: runtime error: signed integer overflow: -255 * 10180917 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/flicvideo: Check frame_size before decrementing

ffmpeg | branch: release/3.3 | Michael Niedermayer | Wed May 17 01:12:55 2017 +0200| [6ebb9e7b7765d699692ba18c2b0ef1ff1ce6dbf4] | committer: Michael Niedermayer avcodec/flicvideo: Check frame_size before decrementing Fixes: runtime error: signed integer overflow: -2147483627 - 22 cannot be

[FFmpeg-cvslog] avcodec/aacdec_template: Fix fixed point scale in decode_cce()

ffmpeg | branch: release/3.3 | Michael Niedermayer | Wed May 17 15:51:46 2017 +0200| [41867021840d9cef86a3e1cd1da31f059ad9c34e] | committer: Michael Niedermayer avcodec/aacdec_template: Fix fixed point scale in decode_cce() Fixes: runtime error: shift exponent 1073741824 is too large for 32

[FFmpeg-cvslog] avcodec/fmvc: Fix off by 1 error

ffmpeg | branch: release/3.3 | Michael Niedermayer | Wed May 17 02:17:13 2017 +0200| [fedd8b65077d8f78de22c56fb5c408271af7c7a5] | committer: Michael Niedermayer avcodec/fmvc: Fix off by 1 error Fixes: out of array access Fixes: 1643/clusterfuzz-testcase-minimized-6117573403869184 Found-by

[FFmpeg-cvslog] avcodec/fic: Fix multiple runtime error: signed integer overflow: 5793 * 419752 cannot be represented in type 'int'

ffmpeg | branch: release/3.3 | Michael Niedermayer | Thu May 18 17:13:18 2017 +0200| [f254c7ea1397f157c8035748a646edf8f5818625] | committer: Michael Niedermayer avcodec/fic: Fix multiple runtime error: signed integer overflow: 5793 * 419752 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/mimic: Use ff_set_dimensions() to set the dimensions

ffmpeg | branch: release/3.3 | Michael Niedermayer | Thu May 18 17:46:56 2017 +0200| [e46bc3052dc1286c5430a35f2259a09812d8ad7d] | committer: Michael Niedermayer avcodec/mimic: Use ff_set_dimensions() to set the dimensions Fixes: OOM Fixes: 1671/clusterfuzz-testcase-minimized-4759078033162240

[FFmpeg-cvslog] avcodec/mlpdec: Fix: runtime error: left shift of negative value -8

ffmpeg | branch: release/3.3 | Michael Niedermayer | Thu May 18 02:07:17 2017 +0200| [686eb3b1ed5b91fdedc0f11d8f19bf0b21505788] | committer: Michael Niedermayer avcodec/mlpdec: Fix: runtime error: left shift of negative value -8 Fixes: 1658/clusterfuzz-testcase-minimized-4889937130291200

[FFmpeg-cvslog] avcodec/dfa: Fix: runtime error: signed integer overflow: -14202 * 196877 cannot be represented in type 'int'

ffmpeg | branch: release/3.3 | Michael Niedermayer | Thu May 18 01:54:43 2017 +0200| [b6c0ad571f609cb95b7d495d1e9a469d27e02acb] | committer: Michael Niedermayer avcodec/dfa: Fix: runtime error: signed integer overflow: -14202 * 196877 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/aacdec: Fix runtime error: signed integer overflow: 2147483520 + 255 cannot be represented in type 'int'

ffmpeg | branch: release/3.3 | Michael Niedermayer | Wed May 17 16:45:46 2017 +0200| [72e5607c8758639aa2d63b16e502a23134acbaff] | committer: Michael Niedermayer avcodec/aacdec: Fix runtime error: signed integer overflow: 2147483520 + 255 cannot be represented in type 'int' F

[FFmpeg-cvslog] avcodec/pixlet: Fix reading invalid numbers of bits

ffmpeg | branch: release/3.3 | Michael Niedermayer | Thu May 18 16:51:08 2017 +0200| [fc7c37906077a703aaa46b718e3018900abcd751] | committer: Michael Niedermayer avcodec/pixlet: Fix reading invalid numbers of bits Fixes: asertion failure Fixes: 1664/clusterfuzz-testcase-minimized

[FFmpeg-cvslog] avcodec/mlpdec: Do not leave a invalid num_primitive_matrices in the context

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sat May 20 01:23:01 2017 +0200| [e605faaabcf8503166e5cb06a98cddbca46756a7] | committer: Michael Niedermayer avcodec/mlpdec: Do not leave a invalid num_primitive_matrices in the context Fixes: runtime error: index 8 out of bounds for type

[FFmpeg-cvslog] avcodec/aacsbr_fixed: Fix multiple runtime error: shift exponent 170 is too large for 32-bit type 'int'

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sun May 21 00:06:10 2017 +0200| [9c65a87bd48e861f97999489cd8114499ed676de] | committer: Michael Niedermayer avcodec/aacsbr_fixed: Fix multiple runtime error: shift exponent 170 is too large for 32-bit type 'int' Fixes pa

[FFmpeg-cvslog] avcodec/aacsbr_fixed: Fix multiple runtime error: shift exponent 150 is too large for 32-bit type 'int'

ffmpeg | branch: release/3.3 | Michael Niedermayer | Fri May 19 12:25:52 2017 +0200| [f3b6ea14081a696d6ece566c403ae55d8109ddb0] | committer: Michael Niedermayer avcodec/aacsbr_fixed: Fix multiple runtime error: shift exponent 150 is too large for 32-bit type 'int' Fixes: 1681/c

[FFmpeg-cvslog] avcodec/sbrdsp_fixed: fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int'

ffmpeg | branch: release/3.3 | Michael Niedermayer | Sun May 21 01:43:04 2017 +0200| [f397613f059538feb2bd94558b5ada0c9b10f5e4] | committer: Michael Niedermayer avcodec/sbrdsp_fixed: fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int' Fixes: pa

<    1   2   3   4   5   6   7   8   9   10   >