avcodec/takdec: Fixes: integer overflow in AV_SAMPLE_FMT_U8P output

Fixes: runtime error: signed integer overflow: 2147483543 + 128 cannot be represented in type 'int' Fixes: 2234/clusterfuzz-testcase-minimized-6266896041115648 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 27c20068054d8c6786833234f7b6db19f1e98362) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
author: Michael Niedermayer <michael@niedermayer.cc> 2017-06-18 14:37:19 +0200
committer: Michael Niedermayer <michael@niedermayer.cc> 2017-08-23 13:15:18 +0200
commit: d811126c617d1f5d5ba1f8c9acc79048e01a6845 (patch)
tree: 26747a48f1ac5219bacb794d236dc6b9a07bbde3
parent: f2e970b2bd70472c1821046a0b07639c92a763d4 (diff)
download: ffmpeg-d811126c617d1f5d5ba1f8c9acc79048e01a6845.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/libavcodec/takdec.c b/libavcodec/takdec.c
index b01f55ca65..32241868c7 100644
--- a/libavcodec/takdec.c
+++ b/libavcodec/takdec.c
@@ -882,7 +882,7 @@ static int tak_decode_frame(AVCodecContext *avctx, void *data,
             uint8_t *samples = (uint8_t *)frame->extended_data[chan];
             int32_t *decoded = s->decoded[chan];
             for (i = 0; i < s->nb_samples; i++)
-                samples[i] = decoded[i] + 0x80;
+                samples[i] = decoded[i] + 0x80U;
         }
         break;
     case AV_SAMPLE_FMT_S16P:
author	Michael Niedermayer <michael@niedermayer.cc>	2017-06-18 14:37:19 +0200
committer	Michael Niedermayer <michael@niedermayer.cc>	2017-08-23 13:15:18 +0200
commit	d811126c617d1f5d5ba1f8c9acc79048e01a6845 (patch)
tree	26747a48f1ac5219bacb794d236dc6b9a07bbde3
parent	f2e970b2bd70472c1821046a0b07639c92a763d4 (diff)
download	ffmpeg-d811126c617d1f5d5ba1f8c9acc79048e01a6845.tar.gz