[FFmpeg-devel] [PATCH 4/4] avfilter/af_pan: check nb_output_channels before use
Michael Niedermayer
michael at niedermayer.cc
Tue Jun 11 16:44:22 EEST 2024
Fixes: CID1500281 Out-of-bounds write
Fixes: CID1500331 Out-of-bounds write
Sponsored-by: Sovereign Tech Fund
Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
---
libavfilter/af_pan.c | 8 ++++++++
1 file changed, 8 insertions(+)
diff --git a/libavfilter/af_pan.c b/libavfilter/af_pan.c
index 31c6be45c37..da32977c995 100644
--- a/libavfilter/af_pan.c
+++ b/libavfilter/af_pan.c
@@ -119,6 +119,14 @@ static av_cold int init(AVFilterContext *ctx)
if (ret < 0)
goto fail;
+ if (pan->nb_output_channels > MAX_CHANNELS) {
+ av_log(ctx, AV_LOG_ERROR,
+ "af_pan supports a maximum of %d channels. "
+ "Feel free to ask for a higher limit.\n", MAX_CHANNELS);
+ ret = AVERROR_PATCHWELCOME;
+ goto fail;
+ }
+
/* parse channel specifications */
while ((arg = arg0 = av_strtok(NULL, "|", &tokenizer))) {
int used_in_ch[MAX_CHANNELS] = {0};
--
2.45.2
More information about the ffmpeg-devel
mailing list