]> git.sesse.net Git - ffmpeg/commitdiff
projects / ffmpeg / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 05872c6)
avcodec/dxtory: Fix negative stride shift in dx2_decode_slice_420()
authorMichael Niedermayer <michael@niedermayer.cc>
Fri, 2 Oct 2020 12:59:13 +0000 (14:59 +0200)
committerMichael Niedermayer <michael@niedermayer.cc>
Sun, 4 Oct 2020 14:54:11 +0000 (16:54 +0200)
Fixes: left shift of negative value -640
Fixes: 26044/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_DXTORY_fuzzer-5631057602543616
Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Reviewed-by: Paul B Mahol <onemda@gmail.com>
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
libavcodec/dxtory.c patch | blob | history

diff --git a/libavcodec/dxtory.c b/libavcodec/dxtory.c
index bc95e0e7e102a90ec7fffb1ea6423d677887a8f2..7143a11e2e4915638b81518f09eed2de9e4636ce 100644 (file)
--- a/libavcodec/dxtory.c
+++ b/libavcodec/dxtory.c
@@ -717,7 +717,7 @@ static int dx2_decode_slice_420(GetBitContext *gb, AVFrame *frame,
             V[huvborder] = decode_sym(gb, lru[2]) ^ 0x80;
         }
 
-        Y += ystride << 1;
+        Y += ystride * 2;
         U += ustride;
         V += vstride;
     }
Unnamed repository; edit this file 'description' to name the repository.