avcodec/h264_mc_template: Only prefetch motion if the list is used.

Fixes: index 59 out of bounds for type 'H264Ref [48]' Fixes: 8232/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_H264_fuzzer-5703295145345024 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 8b55591757244d8244a2be369c2b54c9ae79b02a) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
author: Michael Niedermayer <michael@niedermayer.cc> 2018-06-08 18:25:14 +0200
committer: Michael Niedermayer <michael@niedermayer.cc> 2018-06-15 22:31:13 +0200
commit: f0a10f6376e1472e2106548bbb11df4279cdf4f1 (patch)
tree: 144ee211942d811f66453c4dea9060bd4ebcb87f
parent: 0b4d76d89184970435220c27b0aaa26018814092 (diff)
download: ffmpeg-f0a10f6376e1472e2106548bbb11df4279cdf4f1.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/libavcodec/h264_mc_template.c b/libavcodec/h264_mc_template.c
index 58c05044c1..d02e2bf580 100644
--- a/libavcodec/h264_mc_template.c
+++ b/libavcodec/h264_mc_template.c
@@ -78,7 +78,8 @@ static void MCFUNC(hl_motion)(const H264Context *h, H264SliceContext *sl,
 
     if (HAVE_THREADS && (h->avctx->active_thread_type & FF_THREAD_FRAME))
         await_references(h, sl);
-    prefetch_motion(h, sl, 0, PIXEL_SHIFT, CHROMA_IDC);
+    if (USES_LIST(mb_type, 0))
+        prefetch_motion(h, sl, 0, PIXEL_SHIFT, CHROMA_IDC);
 
     if (IS_16X16(mb_type)) {
         mc_part(h, sl, 0, 1, 16, 0, dest_y, dest_cb, dest_cr, 0, 0,
author	Michael Niedermayer <michael@niedermayer.cc>	2018-06-08 18:25:14 +0200
committer	Michael Niedermayer <michael@niedermayer.cc>	2018-06-15 22:31:13 +0200
commit	f0a10f6376e1472e2106548bbb11df4279cdf4f1 (patch)
tree	144ee211942d811f66453c4dea9060bd4ebcb87f
parent	0b4d76d89184970435220c27b0aaa26018814092 (diff)
download	ffmpeg-f0a10f6376e1472e2106548bbb11df4279cdf4f1.tar.gz