git.osdn.net Git - android-x86/external-ffmpeg.git/commit

(root) / android-x86 / external-ffmpeg.git / commit

author	Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>
	Tue, 1 Nov 2016 00:05:01 +0000 (01:05 +0100)
committer	Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>
	Tue, 1 Nov 2016 17:45:34 +0000 (18:45 +0100)
commit	9d83b209d8861f1daf55f6719b1e0c226ed7269a
tree	38495bb9f4824ff00eda5a0c27040fb7edeb7715	tree \| snapshot
parent	6089c44a2af1394bb34257814ba50e05b84112ec	commit \| diff

mov: immediately return from mov_fix_index without old index entries

If there are no index entries, e_old = st->index_entries is only one
byte large, since it was created by av_realloc called with size 0.

Thus accessing e_old[0].timestamp causes a heap buffer overflow.

Reviewed-by: Sasi Inguva <isasi@google.com>
Signed-off-by: Andreas Cadhalpun <Andreas.Cadhalpun@googlemail.com>

libavformat/mov.c

diff | blob | history

external/ffmpeg

RSS Atom

About OSDN

Find Software

Develop Software

Help