aboutsummaryrefslogtreecommitdiffstats
path: root/libavfilter/avf_concat.c
diff options
context:
space:
mode:
authorMatt Wolenetz <wolenetz@chromium.org>2016-11-21 15:54:02 -0800
committerMichael Niedermayer <michael@niedermayer.cc>2016-12-30 00:11:18 +0100
commitfe7547d69e6721d064c8604d0a6375a2d24b35ca (patch)
tree71b62def439222f68fcc5b416f2561cc06f73e27 /libavfilter/avf_concat.c
parent9ec52a0a9b086d8a916a580ad594c126cd810a45 (diff)
downloadffmpeg-fe7547d69e6721d064c8604d0a6375a2d24b35ca.tar.gz
lavf/utils.c Protect against accessing entries[nb_entries]
In ff_index_search_timestamp(), if b == num_entries, m == num_entries - 1, and entries[m].flags & AVINDEX_DISCARD_FRAME is true, then the search for the next non-discarded packet could access entries[nb_entries], exceeding its bounds. This change adds a protection against that scenario. Reference: https://crbug.com/666770 Reviewed-by: Sasi Inguva <isasi@google.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
Diffstat (limited to 'libavfilter/avf_concat.c')
0 files changed, 0 insertions, 0 deletions