[FFmpeg-devel] [PATCH] avcodec/ivi: Avoid mbs memleak

Michael Niedermayer michael at niedermayer.cc
Thu Dec 13 04:16:04 EET 2018


Fixes: 11696/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_INDEO5_fuzzer-5740319635668992

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
---
 libavcodec/ivi.c | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/libavcodec/ivi.c b/libavcodec/ivi.c
index 19bb01e88f..3b042f2b1c 100644
--- a/libavcodec/ivi.c
+++ b/libavcodec/ivi.c
@@ -437,7 +437,13 @@ av_cold int ff_ivi_init_tiles(IVIPlaneDesc *planes,
             return AVERROR(EINVAL);
 
         for (b = 0; b < planes[p].num_bands; b++) {
+            int t;
             band = &planes[p].bands[b];
+
+            if (band->tiles)
+                for (t = 0; t < band->num_tiles; t++)
+                    av_freep(&band->tiles[t].mbs);
+
             x_tiles = IVI_NUM_TILES(band->width, t_width);
             y_tiles = IVI_NUM_TILES(band->height, t_height);
             band->num_tiles = x_tiles * y_tiles;
-- 
2.19.2



More information about the ffmpeg-devel mailing list