[FFmpeg-devel] [PATCH] dcstr: fix division by zero
Andreas Cadhalpun
andreas.cadhalpun at googlemail.com
Thu Oct 20 21:19:00 EEST 2016
On 20.10.2016 02:59, Michael Niedermayer wrote:
> On Wed, Oct 19, 2016 at 10:41:22PM +0200, Andreas Cadhalpun wrote:
>> Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun at googlemail.com>
>> ---
>> libavformat/dcstr.c | 2 +-
>> 1 file changed, 1 insertion(+), 1 deletion(-)
>>
>> diff --git a/libavformat/dcstr.c b/libavformat/dcstr.c
>> index 69fae41..d5d2281 100644
>> --- a/libavformat/dcstr.c
>> +++ b/libavformat/dcstr.c
>> @@ -47,7 +47,7 @@ static int dcstr_read_header(AVFormatContext *s)
>> avio_skip(s->pb, 4);
>> st->duration = avio_rl32(s->pb);
>
>> st->codecpar->channels *= avio_rl32(s->pb);
>
> This here can overflow and needs a check
Yes.
>
>> - if (!align || align > INT_MAX / st->codecpar->channels)
>> + if (!align || !st->codecpar->channels || align > INT_MAX / st->codecpar->channels)
>> return AVERROR_INVALIDDATA;
>
> might need a <0 check too should be ok otherwise
OK. New patch attached.
Best regards,
Andreas
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-dcstr-fix-division-by-zero.patch
Type: text/x-diff
Size: 1501 bytes
Desc: not available
URL: <http://ffmpeg.org/pipermail/ffmpeg-devel/attachments/20161020/1003cf48/attachment.patch>
More information about the ffmpeg-devel
mailing list