subject:"\[FFmpeg\-devel\] \[PATCH 2\/3\] avcodec\/iff\: Check length before memcpy\(\) in decode_deep_rle32\(\)"

Re: [FFmpeg-devel] [PATCH 2/3] avcodec/iff: Check length before memcpy() in decode_deep_rle32()

2020-04-22 Thread Michael Niedermayer

On Wed, Apr 22, 2020 at 08:10:44PM +1000, Peter Ross wrote: > On Tue, Apr 21, 2020 at 12:03:40AM +0200, Michael Niedermayer wrote: > > Fixes: out of array read > > Fixes: > > 20796/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_IFF_ILBM_fuzzer-5111364702175232.fuzz > > > > Found-by:

Re: [FFmpeg-devel] [PATCH 2/3] avcodec/iff: Check length before memcpy() in decode_deep_rle32()

2020-04-22 Thread Peter Ross

On Tue, Apr 21, 2020 at 12:03:40AM +0200, Michael Niedermayer wrote: > Fixes: out of array read > Fixes: > 20796/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_IFF_ILBM_fuzzer-5111364702175232.fuzz > > Found-by: continuous fuzzing process >

[FFmpeg-devel] [PATCH 2/3] avcodec/iff: Check length before memcpy() in decode_deep_rle32()

2020-04-20 Thread Michael Niedermayer

Fixes: out of array read Fixes: 20796/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_IFF_ILBM_fuzzer-5111364702175232.fuzz Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer --- libavcodec/iff.c | 2 ++ 1