avcodec/vp568: Check that there is enough data for ff_vp56_init_range_decoder()

Fixes: timeout in 730/clusterfuzz-testcase-5265113739165696 (part 1 of 2) Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Reviewed-by: BBB Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 55d7371fe0c44c025eb0e75215e0685870f31874) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
author: Michael Niedermayer <michael@niedermayer.cc> 2017-03-07 19:09:38 +0100
committer: Michael Niedermayer <michael@niedermayer.cc> 2017-05-17 20:35:19 +0200
commit: 9f225bbcabd52537ed322db3f2b0be64b011ffd5 (patch)
tree: d51f7f5a6fd2f017fa1a39de58c6e48509d251b6 /libavcodec/vp5.c
parent: f4f5f69082ff77f3133df5d03327b2636415e158 (diff)
download: ffmpeg-9f225bbcabd52537ed322db3f2b0be64b011ffd5.tar.gz
1 files changed, 4 insertions, 1 deletions
diff --git a/libavcodec/vp5.c b/libavcodec/vp5.c
index 108f16131d..7100bb455d 100644
--- a/libavcodec/vp5.c
+++ b/libavcodec/vp5.c
@@ -39,8 +39,11 @@ static int vp5_parse_header(VP56Context *s, const uint8_t *buf, int buf_size)
 {
     VP56RangeCoder *c = &s->c;
     int rows, cols;
+    int ret;
 
-    ff_vp56_init_range_decoder(&s->c, buf, buf_size);
+    ret = ff_vp56_init_range_decoder(&s->c, buf, buf_size);
+    if (ret < 0)
+        return ret;
     s->frames[VP56_FRAME_CURRENT]->key_frame = !vp56_rac_get(c);
     vp56_rac_get(c);
     ff_vp56_init_dequant(s, vp56_rac_gets(c, 6));
author	Michael Niedermayer <michael@niedermayer.cc>	2017-03-07 19:09:38 +0100
committer	Michael Niedermayer <michael@niedermayer.cc>	2017-05-17 20:35:19 +0200
commit	9f225bbcabd52537ed322db3f2b0be64b011ffd5 (patch)
tree	d51f7f5a6fd2f017fa1a39de58c6e48509d251b6 /libavcodec/vp5.c
parent	f4f5f69082ff77f3133df5d03327b2636415e158 (diff)
download	ffmpeg-9f225bbcabd52537ed322db3f2b0be64b011ffd5.tar.gz