avcodec/cavsdec: Fix undefined behavior from integer overflow

Fixes: 1335/clusterfuzz-testcase-minimized-5566961566089216 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit a0e5f7f363555d2befafb1c9e1579dbe0a2fbca7) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
author: Michael Niedermayer <michael@niedermayer.cc> 2017-05-05 03:24:40 +0200
committer: Michael Niedermayer <michael@niedermayer.cc> 2017-05-16 16:00:22 +0200
commit: a6fb07d5ba3a0a1561c7e354ce9b8fbf6b404c04 (patch)
tree: 74a023011f51a8e6f09ab174c6871a9cc8e0abed
parent: cc9b7db429f1a2327d88c1bd710e866309e68ba5 (diff)
download: ffmpeg-a6fb07d5ba3a0a1561c7e354ce9b8fbf6b404c04.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/libavcodec/cavsdec.c b/libavcodec/cavsdec.c
index fed7043c12..8842346c25 100644
--- a/libavcodec/cavsdec.c
+++ b/libavcodec/cavsdec.c
@@ -465,7 +465,7 @@ static inline void mv_pred_direct(AVSContext *h, cavs_vector *pmv_fw,
                                   cavs_vector *col_mv)
 {
     cavs_vector *pmv_bw = pmv_fw + MV_BWD_OFFS;
-    int den = h->direct_den[col_mv->ref];
+    unsigned den = h->direct_den[col_mv->ref];
     int m = FF_SIGNBIT(col_mv->x);
 
     pmv_fw->dist = h->dist[1];
author	Michael Niedermayer <michael@niedermayer.cc>	2017-05-05 03:24:40 +0200
committer	Michael Niedermayer <michael@niedermayer.cc>	2017-05-16 16:00:22 +0200
commit	a6fb07d5ba3a0a1561c7e354ce9b8fbf6b404c04 (patch)
tree	74a023011f51a8e6f09ab174c6871a9cc8e0abed
parent	cc9b7db429f1a2327d88c1bd710e866309e68ba5 (diff)
download	ffmpeg-a6fb07d5ba3a0a1561c7e354ce9b8fbf6b404c04.tar.gz