[FFmpeg-cvslog] mmvideo: restore initial y value.
Michael Niedermayer
git at videolan.org
Fri Mar 16 16:30:59 CET 2012
ffmpeg | branch: release/0.10 | Michael Niedermayer <michaelni at gmx.at> | Tue Mar 13 22:20:39 2012 +0100| [1749b0d74d792439c6d740212e6d8f0a54dded50] | committer: Michael Niedermayer
mmvideo: restore initial y value.
This bug might have been exploitable (out of HEAP buffer writes)
Bug introduced by libav
commit a55d5bdc6e28a2cfefc440d792de5cc4f02377e2
Date: Tue Mar 6 15:15:42 2012 -0800
algmm: convert to bytestream2 API.
(cherry picked from commit c2e3b564b32d596f5a66d47409f9e07a067a3084)
Signed-off-by: Michael Niedermayer <michaelni at gmx.at>
> http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=1749b0d74d792439c6d740212e6d8f0a54dded50
---
libavcodec/mmvideo.c | 2 +-
1 files changed, 1 insertions(+), 1 deletions(-)
diff --git a/libavcodec/mmvideo.c b/libavcodec/mmvideo.c
index 87eeee2..7066053 100644
--- a/libavcodec/mmvideo.c
+++ b/libavcodec/mmvideo.c
@@ -127,7 +127,7 @@ static int mm_decode_intra(MmContext * s, int half_horiz, int half_vert)
*/
static int mm_decode_inter(MmContext * s, int half_horiz, int half_vert)
{
- int data_off = bytestream2_get_le16(&s->gb), y;
+ int data_off = bytestream2_get_le16(&s->gb), y = 0;
GetByteContext data_ptr;
if (bytestream2_get_bytes_left(&s->gb) < data_off)
More information about the ffmpeg-cvslog
mailing list