github-mirrors/FFmpeg
1
0
Fork 0
mirror of https://mirror.skon.top/https://github.com/FFmpeg/FFmpeg synced 2026-04-20 21:00:41 +08:00
Code Issues Packages Projects Releases Wiki Activity

avformat/segafilm: dont read uninitialized value

Browse Source 
scratch[20] doesnt exist in version 0

Fixes: use of uninitialized memory
Fixes: 471664627/clusterfuzz-testcase-minimized-ffmpeg_dem_SEGAFILM_fuzzer-4738726971637760

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
This commit is contained in:
Michael Niedermayer
2026-02-08 00:28:04 +01:00
parent 8eecba02c7
commit b2f1657087
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
libavformat/segafilm.c
View File

@@ -163,7 +163,7 @@ static int film_read_header(AVFormatContext *s)
st->codecpar->height = AV_RB32(&scratch[12]); st->codecpar->height = AV_RB32(&scratch[12]);
if (film->video_type == AV_CODEC_ID_RAWVIDEO) { if (film->video_type == AV_CODEC_ID_RAWVIDEO) {
if (scratch[20] == 24) { if (film->version == 0 || scratch[20] == 24) {
st->codecpar->format = AV_PIX_FMT_RGB24; st->codecpar->format = AV_PIX_FMT_RGB24;
} else { } else {
av_log(s, AV_LOG_ERROR, "raw video is using unhandled %dbpp\n", scratch[20]); av_log(s, AV_LOG_ERROR, "raw video is using unhandled %dbpp\n", scratch[20]);