aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMichael Niedermayer <michael@niedermayer.cc>2019-01-07 02:44:50 +0100
committerMichael Niedermayer <michael@niedermayer.cc>2019-01-07 23:21:47 +0100
commit038d291b70bffa550cde552f8325e1b9f71f0646 (patch)
tree3230061a216fc7eb718435cffcf6ea5ab504895f
parente9564f7feaf25b5c0ccd73e835b69a0dbba06786 (diff)
downloadffmpeg-038d291b70bffa550cde552f8325e1b9f71f0646.tar.gz
avcodec/qpeg: Optimize long runs in qpeg_decode_intra() not spanning a full row
Fixes: Timeout Fixes: 11354/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_QPEG_fuzzer-5766275943366656 Before: Executed clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_QPEG_fuzzer-5766275943366656 in 9470 ms After : Executed clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_QPEG_fuzzer-5766275943366656 in 134 ms Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Reviewed-by: Paul B Mahol <onemda@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
Diffstat
-rw-r--r--libavcodec/qpeg.c5
1 files changed, 4 insertions, 1 deletions
diff --git a/libavcodec/qpeg.c b/libavcodec/qpeg.c
index cb452621e7..654fd998d6 100644
--- a/libavcodec/qpeg.c
+++ b/libavcodec/qpeg.c
@@ -80,7 +80,10 @@ static void qpeg_decode_intra(QpegContext *qctx, uint8_t *dst,
p = bytestream2_get_byte(&qctx->buffer);
for(i = 0; i < run; i++) {
- dst[filled++] = p;
+ int step = FFMIN(run - i, width - filled);
+ memset(dst+filled, p, step);
+ filled += step;
+ i += step - 1;
if (filled >= width) {
filled = 0;
dst -= stride;
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-22 07:39:16 +0000