[FFmpeg-devel] [PATCH] Fix interlaced MPEG2 decoder crash (issue2367)
Thu Dec 23 00:16:21 CET 2010
Full problem description available on https://roundup.ffmpeg.org/issue2367.
After some research I've found that sample file(exploit.bin) conflicts
with specification in the following lines:
"In the case that a P field picture is used as the second field of a
frame in which the first field is an I field
picture a series of semantic restrictions apply. These ensure that
prediction is only made from the I field
picture. These restrictions are;
? There shall be no macroblocks that are coded with
macroblock_motion_forward zero and
? Dual prime prediction shall not be used.
? Field prediction in which motion_vertical_field_select
indicates the same parity as the field
being predicted shall not be used.
? There shall be no skipped macroblocks."
So it looks like first and third restrictions are broken in sample file.
Attached patch contains check for this situation.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 854 bytes
Desc: not available
More information about the ffmpeg-devel