[FFmpeg-cvslog] New commits on branch release/3.0

Git System git at videolan.org
Wed Jul 19 05:54:57 EEST 2017


URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=4e7ddba5949ab44798271cd5f82ea878a1826540
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sat Jul 15 22:22:52 2017 +0200

    avcodec/aacdec_template (fixed point): Check gain in decode_cce() to avoid undefined shifts later
    
    Fixes: runtime error: shift exponent 47 is too large for 32-bit type 'int'
    Fixes: 2581/clusterfuzz-testcase-minimized-4681474395602944
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 2886142e0c3b5f4304c6e2a2bd282770a8a47f93)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=5e78e477fa6902092774a80c14118b9d98568fc4
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Fri Jul 14 00:45:29 2017 +0200

    avcodec/aacdec_template: Fix undefined integer overflow in apply_tns()
    
    Fixes: runtime error: signed integer overflow: -2147483648 - 1202286525 cannot be represented in type 'int'
    Fixes: 2071/clusterfuzz-testcase-minimized-6036414271586304
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 0ef8f03133a0bd83c74200a8cf30982c0f574016)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9a2ca3cce2cfb74ffdf9fc27405aac24e042df96
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed Jul 12 16:24:18 2017 +0200

    avcodec/mjpegdec: Clip DC also on the negative side.
    
    Fixes: runtime error: signed integer overflow: -16711425 + -2130772346 cannot be represented in type 'int'
    Fixes: 2533/clusterfuzz-testcase-minimized-5372857678823424
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit c28f648b19dd36ff9bc869ad527a1569a0b623e2)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=f1143f5dc0e2c65173b102a8cc097b3606bea3d9
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jul 9 15:19:18 2017 +0200

    avcodec/aacps (fixed point): Fix multiple signed integer overflows
    
    Fixes: runtime error: signed integer overflow: 1421978265 - -1810326882 cannot be represented in type 'int'
    Fixes: 2527/clusterfuzz-testcase-minimized-5260915396050944
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 80b9e40b6f1e15db9f36c195e7375e65f6b4924f)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=0ddff40bf8887a023e553cf6282e9df654435456
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jul 2 03:30:54 2017 +0200

    avcodec/sbrdsp_fixed: Fix integer overflow in sbr_hf_apply_noise()
    
    Fixes: runtime error: signed integer overflow: -2049425300 + -117591631 cannot be represented in type 'int'
    Fixes: part of 2096/clusterfuzz-testcase-minimized-4901566068817920
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 2061de8a3f73f14806e5f6ccaf9a635f740a54e6)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=2170bdb56d68f792cbeaa61cd85a71249360eea7
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue Jun 27 13:47:32 2017 +0200

    avcodec/wavpack: Fix invalid shift
    
    Fixes: runtime error: left shift of 1 by 31 places cannot be represented in type 'int'
    Fixes: 2377/clusterfuzz-testcase-minimized-6108505935183872
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit c07af720984acaafaa273369080b458d73975775)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=665885bfc18904fe30500f30d978580cd2e74f68
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Fri Jun 30 16:23:32 2017 +0200

    avcodec/hevc_ps: Fix integer overflow with beta/tc offsets
    
    Fixes: runtime error: signed integer overflow: 2113929216 * 2 cannot be represented in type 'int'
    Fixes: 2422/clusterfuzz-testcase-minimized-5242114713583616
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit de54a37c1dfa2817b5838720fac44e82312ccbfd)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=7807d2478bfde81a34412dd4f51cc0a9f3a6760f
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed Jun 28 20:47:59 2017 +0200

    avcodec/cfhd: Fix invalid left shift of negative value
    
    Fixes: runtime error: left shift of negative value -1
    Fixes: 2395/clusterfuzz-testcase-minimized-6540529313513472
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit c709f009dad20d99b28918f4f8d7cd394b838def)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=cc9082dce19cc45bc8dbe7aee4efa86c56e2e319
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed Jun 28 20:29:02 2017 +0200

    avcodec/vb: Check vertical GMC component before multiply
    
    Fixes: runtime error: signed integer overflow: 8224 * 663584 cannot be represented in type 'int'
    Fixes: 2393/clusterfuzz-testcase-minimized-6128334993883136
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit bc6ab72bc7af27189e7b524b97e45c6fcadab5cf)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=34535941ae9440177345c0bb2347ce16a1e80887
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Mon Jun 26 15:05:08 2017 +0200

    avcodec/jpeg2000dwt: Fix integer overflow in dwt_decode97_int()
    
    Fixes: runtime error: signed integer overflow: -163654656 * 256 cannot be represented in type 'int'
    Fixes: 2367/clusterfuzz-testcase-minimized-4648678897745920
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit ea5366670e26b2c6c396e6a5f49827a2b71e6dd6)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=3cae97b090e139acfcda6dda7c73f2e607c4f74a
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jul 16 14:57:20 2017 +0200

    avcodec/apedec: Fix integer overflow
    
    Fixes: out of array access
    Fixes: PoC.ape and others
    
    Found-by: Bingchang, Liu at VARAS of IIE
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit ba4beaf6149f7241c8bd85fe853318c2f6837ad0)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=654ff561032a252bfa0f31b74ea54dad98dba294
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 25 02:55:08 2017 +0200

    Update for 3.0.9
    
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=0fe174fa9c80fdfe681b4b558eeaba96c4b987bd
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 25 00:13:53 2017 +0200

    avcodec/wavpack: Fix integer overflow in wv_unpack_stereo()
    
    Fixes: runtime error: signed integer overflow: 2080374785 + 2080374784 cannot be represented in type 'int'
    Fixes: 2351/clusterfuzz-testcase-minimized-5359403240783872
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 73ea2a028e12a7d779834f78dc496c8c4b08361f)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=8b9e522e08d91d06dae059a844c2bf20c696a078
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sat Jun 24 13:45:35 2017 +0200

    avcodec/mpeg4videodec: Fix GMC with videos of dimension 1
    
    Fixes: runtime error: shift exponent -1 is negative
    Fixes: 2338/clusterfuzz-testcase-minimized-5153426541379584
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 4976a3411f71518d17a57e373b62517f066648fd)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=bb02e5bc09186e20f98d90e32311fd514c69ac56
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Fri Jun 23 01:58:48 2017 +0200

    avcodec/wavpack: Fix integer overflow
    
    Fixes: runtime error: signed integer overflow: 227511904 + 1964113935 cannot be represented in type 'int'
    Fixes: 2331/clusterfuzz-testcase-minimized-6182185830711296
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 24e95f9d4de012f51fdd5767dff0b3142e13ec3a)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=addf70e4928a648e7661d0e94ca207db82ad0b49
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu Jun 22 21:21:56 2017 +0200

    avcodec/takdec: Fix integer overflow
    
    Fixes: runtime error: signed integer overflow: 512 + 2147483146 cannot be represented in type 'int'
    Fixes: 2314/clusterfuzz-testcase-minimized-4519333877252096
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 0c2ef4f6b4d52a7b7184c747ffea3576926ea1b1)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=0879ecd4a3571f53628bd06028e6d5efa464aae2
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu Jun 22 20:21:05 2017 +0200

    avcodec/tiff: Update pointer only when the result is used
    
    Fixes: runtime error: signed integer overflow: 538976288 * 32 cannot be represented in type 'int'
    Fixes: 2310/clusterfuzz-testcase-minimized-4534784887881728
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 27f80ab0160d2e64007e1c9799ffd4504cc13eb5)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=df11b45644e0c3067650b3a926aa8b6fc45cafa6
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed Jun 21 19:34:31 2017 +0200

    avcodec/cfhd: Check bpc before setting bpc in context
    
    Fixes: runtime error: shift exponent 32 is too large for 32-bit type 'int'
    Fixes: 2306/clusterfuzz-testcase-minimized-5002997392211968
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 6f1d2355a7e4d681bea82b4cf4280272d9fe8af3)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=605bc45295e935786b53bb9156440e089f8512d2
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed Jun 21 17:56:34 2017 +0200

    avcodec/cfhd: Fix undefined shift
    
    Fixes: runtime error: left shift of negative value -1
    Fixes: 2303/clusterfuzz-testcase-minimized-5529675273076736
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 5a950f4e32a9756391f81987246d96b6549dd447)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=eb7ad560754db20761018fc252416cb3df35dbd5
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue Jun 20 14:38:34 2017 +0200

    avcodec/hevc_filter: Fix invalid shift
    
    Fixes: runtime error: left shift of negative value -1
    
    Fixes: 2299/clusterfuzz-testcase-minimized-4843509351710720
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit d7b3d5c3f2e2ff1994762b5e09c05fbc33790b5b)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=6dca67f3a6481c4b74ceeb69d9a5b28385e2a296
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue Jun 20 13:52:06 2017 +0200

    avcodec/mpeg4videodec: Fix overflow in virtual_ref computation
    
    Fixes: runtime error: signed integer overflow: 262144 * -16120 cannot be represented in type 'int'
    Fixes: 2292/clusterfuzz-testcase-minimized-6156080415506432
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 5443c4bdf4828ac5b7b19cf54feb496c2da40079)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=fae49f28e6579c0c59ada8c867592fc8411fd65a
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu Jun 15 01:35:49 2017 +0200

    avcodec/lpc: signed integer overflow in compute_lpc_coefs() (aacdec_fixed)
    
    Fixes: runtime error: signed integer overflow: -1575818955 + -915383657 cannot be represented in type 'int'
    Fixes: 2224/clusterfuzz-testcase-minimized-6208559949807616
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit e95fcfe8fb28fdfdaecec465c60aad79bc340a3d)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=628e2b2dd34aeeab6e32f74cc37437c62bc5e013
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Mon Jun 19 14:08:58 2017 +0200

    avcodec/wavpack: Fix undefined integer negation
    
    Fixes: runtime error: negation of -2147483648 cannot be represented in type 'int'; cast to an unsigned type to negate this value to itself
    Fixes: 2291/clusterfuzz-testcase-minimized-5538453481586688
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 5f89747086af741ddc34e2378cde8519b8faee78)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=784d57bb62de7dfce126aaf0c39cc0abb9baf6a9
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Mon Jun 19 14:04:32 2017 +0200

    avcodec/aacdec_fixed: Check s for being too small
    
    Fixes: runtime error: shift exponent -8 is negative
    Fixes: 2286/clusterfuzz-testcase-minimized-5711764169687040
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit cf7edbd6c5d48d7302877352f7b60092d5b65243)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9b346f12fa44637031afc77c60b46f6fa70fbb50
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 11 17:58:45 2017 +0200

    avcodec/htmlsubtitles: Replace very slow redundant sscanf() calls by cleaner and faster code
    
    This reduces the worst case from O(n²) to O(n) time
    
    Fixes Timeout
    Fixes: 2127/clusterfuzz-testcase-minimized-6595787859427328
    
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 4132218b87cd6fb13abd162e3037ef4563286baa)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=85e0f61b41fc1ef1b982a07d5b3fcb8e347cd886
Author: Anton Mitrofanov <BugMaster at narod.ru>
Date:   Wed Jun 14 03:01:56 2017 +0300

    avcodec/h264: Fix mix of lossless and lossy MBs decoding
    
    Signed-off-by: Ronald S. Bultje <rsbultje at gmail.com>
    (cherry picked from commit cf231b68da1150c100114f2c5671b7ed740f917a)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=273e87be3b24738a837b1854d11a47f2954e96f2
Author: Anton Mitrofanov <BugMaster at narod.ru>
Date:   Tue Jun 13 23:37:29 2017 +0300

    avcodec/h264_mb: Fix 8x8dct in lossless for new versions of x264
    
    Signed-off-by: Ronald S. Bultje <rsbultje at gmail.com>
    (cherry picked from commit 06dda70f1e7c69a3b1684af5e6930431c62c527a)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=48ab5a4dc0034f7a1b7c2da85e9615cfd3fb3d41
Author: Anton Mitrofanov <BugMaster at narod.ru>
Date:   Wed May 31 02:37:41 2017 +0300

    avcodec/h264_cabac: Fix CABAC+8x8dct in 4:4:4
    
    Use the correct ctxIdxInc calculation for coded_block_flag.
    Keep old behavior for old versions of x264 for backward compatibility.
    
    Signed-off-by: Ronald S. Bultje <rsbultje at gmail.com>
    (cherry picked from commit 840b41b2a643fc8f0617c0370125a19c02c6b586)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=d5abcaacb396ce379bb1e902d2582a7fc6ba2085
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 18 14:37:19 2017 +0200

    avcodec/takdec: Fixes: integer overflow in AV_SAMPLE_FMT_U8P output
    
    Fixes: runtime error: signed integer overflow: 2147483543 + 128 cannot be represented in type 'int'
    Fixes: 2234/clusterfuzz-testcase-minimized-6266896041115648
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 27c20068054d8c6786833234f7b6db19f1e98362)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=e46f8c96d0c2964687a7da39cabdcc8e5d36dda2
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sat Jun 17 15:06:21 2017 +0200

    avcodec/jpeg2000dsp: Reorder operations in ict_int() to avoid 2 integer overflows
    
    Fixes: runtime error: signed integer overflow: 58065 * 51981 cannot be represented in type 'int'
    Fixes: 2271/clusterfuzz-testcase-minimized-5778297776504832
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit c746f92a8e03d5a062359fba836eba4b3530687e)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=fce334274bf5df2fce4fa3db958a936b5ad44e75
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sat Jun 17 14:54:19 2017 +0200

    avcodec/hevcpred_template: Fix left shift of negative value
    
    Fixes: runtime error: left shift of negative value -1
    Fixes: 2250/clusterfuzz-testcase-minimized-5693382112313344
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit c94326c1fc2fb5719c6f28fe1b95c0c74417998b)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=59d40e2d6802b3aa145e8f512bebefc2d6dccf4b
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sat Jun 17 00:34:08 2017 +0200

    avcodec/hevcdec: Fix signed integer overflow in decode_lt_rps()
    
    Fixes: runtime error: signed integer overflow: 2147483647 + 6 cannot be represented in type 'int'
    Fixes: 2263/clusterfuzz-testcase-minimized-4800359627227136
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 1edbf5e20c75f06d6987bc823e63aa4e649ccddd)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=e8555274b93ad666c28e7a81a1316f0cf65a3a05
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Fri Jun 16 19:57:08 2017 +0200

    avcodec/jpeg2000dec: Check nonzerobits more completely
    
    Fixes: runtime error: shift exponent 36 is too large for 32-bit type 'int'
    Fixes: 2239/clusterfuzz-testcase-minimized-5639766592716800
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit dfb61ea2630029b7aec7911aade769bf1a914eea)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=79393f4fb140fa026a72373fd62c847cdc0f3fe7
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Fri Jun 9 02:16:54 2017 +0200

    avcodec/shorten: Sanity check maxnlpc
    
    Fixes OOM
    Fixes: 2131/clusterfuzz-testcase-minimized-4718045157130240
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit e77ddd31a8e14bcf5eccd6008d866ae90b4b0d4c)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=a5feb7e9bd4742f3790e7cff691164899bc0e5c9
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu Jun 15 23:41:46 2017 +0200

    avcodec/truemotion2: Move skip computation after checks
    
    Fixes: runtime error: signed integer overflow: 630067357 * 4 cannot be represented in type 'int'
    Fixes: 2233/clusterfuzz-testcase-minimized-5943031318446080
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 3c716682a8b69e6644a385a663aaf0e5dc808ae8)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=23d02b44655774de30aaead4ec5237f281ecbaea
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu Jun 15 23:26:18 2017 +0200

    avcodec/jpeg2000: Fixes integer overflow in ff_jpeg2000_ceildivpow2()
    
    Fixes: runtime error: negation of -2147483648 cannot be represented in type 'int'; cast to an unsigned type to negate this value to itself
    Fixes: 2231/clusterfuzz-testcase-minimized-4565181982048256
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit e3fadc57c5c170f31455abacbcbd67115d7321d7)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=f19152559f5fe60498b145e34cfb5eaac7d8bc24
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu Jun 15 01:28:28 2017 +0200

    avcodec/hevcdec: Check nb_sps
    
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit bc406744620710911de9157eafa3e61d0246566f)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=7c82082ac8d4bc011b22d6fa43e96d43fab0c519
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu Jun 15 01:26:01 2017 +0200

    avcodec/hevc_refs: Check nb_refs in add_candidate_ref()
    
    Fixes: runtime error: index 16 out of bounds for type 'int [16]'
    Fixes: 2209/clusterfuzz-testcase-minimized-5012343912136704
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 1cb4ef526dd1e5f547d0354efb0831d07e967919)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=ea5603ff3a55b593669f4b0d21682c918fd3dc3f
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed Jun 14 23:55:17 2017 +0200

    avcodec/mpeg4videodec: Check sprite delta upshift against overflowing.
    
    Fixes: runtime error: signed integer overflow: -268386304 * 16 cannot be represented in type 'int'
    Fixes: 2204/clusterfuzz-testcase-minimized-5616756909408256
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 12245ab1f677074b8ff83e87f76a41aba692ccd6)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=301791a2bd0ff44df5f5ffbdd740aa66b54a23d5
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed Jun 14 23:49:23 2017 +0200

    avcodec/mpeg4videodec: Fix integer overflow in num_sprite_warping_points=2 case
    
    Fixes: runtime error: signed integer overflow: 131072 + 2147352576 cannot be represented in type 'int'
    Fixes: 2192/clusterfuzz-testcase-minimized-5370387988742144
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 0a87be404ab7e3f47e67e79160dcc9623e36835b)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=5a35ac54358de40db0cf2b2393b0146e616ba233
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue Jun 13 16:25:59 2017 +0200

    avcodec/aacsbr_fixed: Check shift in sbr_hf_assemble()
    
    Fixes: runtime error: shift exponent -10 is negative
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit d1992448d37f7cfa2acda5cc729dc0ff1b019390)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=3db46e6447f191622a9219a7f14a81234274c5df
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue Jun 13 13:28:23 2017 +0200

    avcodec/sbrdsp_fixed: Return an error from sbr_hf_apply_noise() if operations are impossible
    
    Fixes: 1775/clusterfuzz-testcase-minimized-5330288148217856
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit d549f026d8b64b879c3ce3b8c7d153c82aa5eb52)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=0f59d5a6e0a84e8be6fc4351c6db7eb71f25371e
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 11 20:28:46 2017 +0200

    avcodec/jpeg2000dwt: Fix runtime error: left shift of negative value -123
    
    Fixes: 2208/clusterfuzz-testcase-minimized-5976593765761024
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit d24043e1a2f93f206a2ad59054f24f45ff023e5c)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=fef11b7c38bd1142e817228d82f6e798210ea985
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 11 20:19:59 2017 +0200

    avcodec/wavpack: Fix runtime error: signed integer overflow: 1886191616 + 277872640 cannot be represented in type 'int'
    
    Fixes: 2181/clusterfuzz-testcase-minimized-6314784322486272
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit c996374d4d86e0efbef71812448b4c65656bc667)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=e8c87c21c0cc07689bc86ad34f4a21774112093d
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 11 14:34:54 2017 +0200

    avcodec/snowdec: Fix runtime error: left shift of negative value -1
    
    Fixes: 2197/clusterfuzz-testcase-minimized-6010716676947968
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 2e44126363bc9e23093ceced5d7bde1ee4bbb338)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=f3be926246b6df3851583d0d74d521622c82d806
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 11 14:32:35 2017 +0200

    avcodec/aacdec_fixed: Fix runtime error: left shift of negative value -1297616
    
    Fixes: 2195/clusterfuzz-testcase-minimized-4736721533009920
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 6d499ecef9c2467772b6066176ffda0b7ab27cc2)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=91da2f8ebb8264317ef61611c9ca8eed83fc128a
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 11 01:05:26 2017 +0200

    avcodec/tiff: Fix leak of geotags[].val
    
    Fixes: 2176/clusterfuzz-testcase-minimized-5908197216878592
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 22a25ab3896cbb8dceebdba4d439e8b2b398ff0e)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=e7f8984f990b4fa3a965da9b4db6c7ff8a1e36af
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 11 00:45:20 2017 +0200

    avcodec/ra144: Fix runtime error: signed integer overflow: -2200 * 1033073 cannot be represented in type 'int'
    
    Fixes: 2175/clusterfuzz-testcase-minimized-5809657849315328
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 71da0a5c9750e9fd0c9609470f610d32952923eb)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=3784d34c3bdf3f378d5a116b6d4720df6d4ce2d6
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sat Jun 10 19:43:25 2017 +0200

    avcodec/flicvideo: Fix runtime error: signed integer overflow: 4864 * 459296 cannot be represented in type 'int'
    
    Fixes: 2174/clusterfuzz-testcase-minimized-5739234533048320
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 90e8317b3b33dcb54ae01e419d85cbbfbd874963)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=72b8c6c645da6580b1ddb0a79d061d2069347dd3
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sat Jun 10 18:45:08 2017 +0200

    avcodec/cfhd: Check band parameters before storing them
    
    Fixes out of array read
    Fixes: 2169/clusterfuzz-testcase-minimized-5688641642823680
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 54aaadf648073149f1ac34f56cbde4e6c5aa22ef)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=2dcae36de1b85f8054a77c3b82f5640c7f10f384
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu Jun 8 13:58:47 2017 +0200

    avcodec/indeo4: Check remaining data in Pic hdr extension parsing code
    
    Fixes: Timeout
    Fixes: 2115/clusterfuzz-testcase-minimized-6594111748440064
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit a3b5b60bdf451faefeeec07c4e684a251968bf2d)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=968036dbf97f3d8c7a70a1072a2a4e4af035fdce
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu Jun 8 13:44:32 2017 +0200

    avcodec/ac3dec_fixed: Fix multiple runtime error: signed integer overflow: -39271008 * 59 cannot be represented in type 'int'
    
    Fixes: 2113/clusterfuzz-testcase-minimized-6510704959946752
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 4e3ab1a5c12fe3a88f44b734d3f2e25f4769ec47)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=3ca6d2645880ae3521b4582e5e14c74c1f127be6
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue Jun 6 16:28:57 2017 +0200

    avcodec/mpeg4videodec: Fix runtime error: signed integer overflow: 53098 * 40448 cannot be represented in type 'int'
    
    Fixes: 2106/clusterfuzz-testcase-minimized-6136503639998464
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 18bca25adbae9d010d75f9fc197c0af656af758d)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=a3b9a5c4c42cf01290333ace5b87eb585000532b
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue Jun 6 16:21:37 2017 +0200

    avcodec/pafvideo: Fix assertion failure
    
    Fixes: 2100/clusterfuzz-testcase-minimized-4522961547558912
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit c4360559ee2a6c8c624f24fc7e2a1cf00972ba68)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=0ed96055f42438ea09934c689e6cc3c1a87dd01d
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue Jun 6 16:01:16 2017 +0200

    avcodec/takdec: Fix multiple runtime error: signed integer overflow: 637072 * 4096 cannot be represented in type 'int'
    
    Fixes: 2079/clusterfuzz-testcase-minimized-5345861779324928
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit e4efd41b83e78c7f2ee3e74bee90226110743a8e)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=b6b70060ba5b3806087dee3371cb2fcb7b4910b9
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Mon Jun 5 22:23:15 2017 +0200

    avcodec/mjpegdec: Check that reference frame matches the current frame
    
    Fixes: out of array read
    Fixes: 2097/clusterfuzz-testcase-minimized-5036861833609216
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 4705edbbb96e193f51c72248f508ae5693702a48)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=d37559993fe50ef77a6f1c94df977ec7de9b9ec8
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Mon Jun 5 20:39:21 2017 +0200

    avcodec/tiff: Avoid loosing allocated geotag values
    
    Fixes memleak
    Fixes: 2076/clusterfuzz-testcase-minimized-6542640243802112
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit d7cbeab4c1381f95ed0ebf85d7950bee96f66164)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=49b744631768c828d57d6bbb6b57df9e70ec59a9
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Mon Jun 5 19:33:56 2017 +0200

    avcodec/cavs: Fix runtime error: signed integer overflow: -12648062 * 256 cannot be represented in type 'int'
    
    Fixes: 2067/clusterfuzz-testcase-minimized-5578430902960128
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 1e6ee86d9254e8fd2158cc9a31d3be96b0809411)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=bb1014279d865597c281c651c9d78dfb56ca2742
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sat Jun 3 21:20:04 2017 +0200

    avformat/hls: Check local file extensions
    
    This reduces the attack surface of local file-system
    information leaking.
    
    It prevents the existing exploit leading to an information leak. As
    well as similar hypothetical attacks.
    
    Leaks of information from files and symlinks ending in common multimedia extensions
    are still possible. But files with sensitive information like private keys and passwords
    generally do not use common multimedia filename extensions.
    It does not stop leaks via remote addresses in the LAN.
    
    The existing exploit depends on a specific decoder as well.
    It does appear though that the exploit should be possible with any decoder.
    The problem is that as long as sensitive information gets into the decoder,
    the output of the decoder becomes sensitive as well.
    The only obvious solution is to prevent access to sensitive information. Or to
    disable hls or possibly some of its feature. More complex solutions like
    checking the path to limit access to only subdirectories of the hls path may
    work as an alternative. But such solutions are fragile and tricky to implement
    portably and would not stop every possible attack nor would they work with all
    valid hls files.
    
    Developers have expressed their dislike / objected to disabling hls by default as well
    as disabling hls with local files. There also where objections against restricting
    remote url file extensions. This here is a less robust but also lower
    inconvenience solution.
    It can be applied stand alone or together with other solutions.
    limiting the check to local files was suggested by nevcairiel
    
    This recommits the security fix without the author name joke which was
    originally requested by Nicolas.
    
    Found-by: Emil Lerner and Pavel Cheremushkin
    Reported-by: Thierry Foucu <tfoucu at google.com>
    
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 189ff4219644532bdfa7bab28dfedaee4d6d4021)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=c4a3020c1ba367632fb295fcfe35fdea773ba57e
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 4 21:37:47 2017 +0200

    avcodec/qdrw: Fix null pointer dereference
    
    The RGB555 PACKBITSRGN case tries to read a palette, if such
    palette is actually stored then it accesses a null pointer.
    All 16bit samples i could find use DIRECTBITSRGN.
    
    Fixes: 2065/clusterfuzz-testcase-minimized-6298930457346048
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 46b865ea9f86cbd12e1bf701913263c7932cccb0)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=1065957f7b05e6242e2ff5b5654e12994775c284
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 4 20:45:09 2017 +0200

    avutil/softfloat: Fix sign error in and improve documentation of av_int2sf()
    
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 6019d721d4c10bf73018d68511d9d0a914c0a389)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=af85f35d2ce86fed041b80ec5d0b305c5768582c
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 4 17:06:27 2017 +0200

    avcodec/hevc_ps: Fix runtime error: index 32 out of bounds for type 'uint8_t [32]'
    
    Fixes: 2010/clusterfuzz-testcase-minimized-6209288450080768
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 29808fff339da3e0f26131f7a6209b853947a54b)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=e0d1be3539790ecc2116ccc43f0ed2a524e46674
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 4 15:41:18 2017 +0200

    avcodec/dxv: Check remaining bytes in dxv_decompress_raw()
    
    Fixes: Timeout
    Fixes: 2006/clusterfuzz-testcase-minimized-5766515037044736
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit eb5049227033d946add93c0714bb8a28d94166f1)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=ce4196561a8f07585f6a1fabf503e2b615aba06e
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 4 13:38:02 2017 +0200

    avcodec/pafvideo: Check packet size and frame code before ff_reget_buffer()
    
    Fixes 1745/clusterfuzz-testcase-minimized-6160693365571584
    Fixes: Timeout
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit faa5a2181df53b5226f998a20b735798addcd365)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=06f69315293b8c74679bc9a52f21cce7a323cca5
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun Jun 4 13:02:51 2017 +0200

    avcodec/ac3dec_fixed: Fix runtime error: left shift of 419 by 23 places cannot be represented in type 'int'
    
    Fixes: 1352/clusterfuzz-testcase-minimized-5757565017260032
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 136ce8baa4fc16cf38690cb457f7356c00e00a28)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=641b38c9c8a2d8d1e3b94c5d38f2e790ccad990e
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Fri Jun 2 14:47:16 2017 +0200

    avformat/options: log filename on open
    
    The loglevel is choosen so that the main filename and any images of
    multi image sequences are shown only at debug level to avoid
    clutter.
    
    This makes exploits in playlists more visible. As they would show
    accesses to private/sensitive files
    
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 53e0d5d7247548743e13c59c35e59fc2161e9582)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=3764e3a2c528def382193e64a6d602bd5772f756
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Fri Jun 2 22:31:02 2017 +0200

    avcodec/aacps: Fix runtime error: left shift of 1073741824 by 1 places cannot be represented in type 'INTFLOAT' (aka 'int')
    
    Fixes: 2005/clusterfuzz-testcase-minimized-5744226438479872
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 9faf098163b33e7b0f5baafa3371ef5401f4105d)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=2c3bcf6bf2381f214d834bf71eb5b79caac08e7d
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu Jun 1 18:48:37 2017 +0200

    avcodec/wavpack: Fix runtime error: shift exponent 32 is too large for 32-bit type 'int'
    
    Fixes: 1967/clusterfuzz-testcase-minimized-5757031199801344
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 8b3e580b7f436206e84dac89415e057fa9abdab8)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=ecc3fe3859f3f924eb9f841fd0cc5c42d9636a8b
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed May 31 22:53:02 2017 +0200

    avcodec/wavpack: Fix runtime error: signed integer overflow: 2013265955 - -134217694 cannot be represented in type 'int'
    
    Fixes: 1922/clusterfuzz-testcase-minimized-5561194112876544
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit a47273c803edfbc43793349b74429ae29b05c003)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9d8c59ce507a7bb3833695435b1cf5c6762441b2
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed May 31 22:18:23 2017 +0200

    avcodec/cinepak: Check input packet size before frame reallocation
    
    Reduces time spend decoding 1917/clusterfuzz-testcase-minimized-5023221273329664
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit e47057e932ff9a071d52fa1d5d4a956340eb2475)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=a249250b3a882b8b637c547da01d2e58a9c89c9f
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed May 31 22:02:07 2017 +0200

    avcodec/hevc_ps: Fix runtime error: signed integer overflow: 2147483628 + 256 cannot be represented in type 'int'
    
    Fixes: 1909/clusterfuzz-testcase-minimized-6732072662073344
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 6726328f7940a76c43b4d97ac37ababf363d042f)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9589a7f39175527df3817049cb6cb7cbe20f1520
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed May 31 15:52:56 2017 +0200

    avcodec/ra144: Fixes runtime error: signed integer overflow: 7160 * 327138 cannot be represented in type 'int'
    
    Fixes: 1908/clusterfuzz-testcase-minimized-5392712477966336
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 08cb69e870c1b2fdc3574780a3662b92bfd6ef79)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=309ec23130a176a486928f29ee1809b8ae67bbb7
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed May 31 13:39:45 2017 +0200

    avcodec/pnm: Use ff_set_dimensions()
    
    Fixes: OOM
    Fixes: 1906/clusterfuzz-testcase-minimized-4599315114754048
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit a1c0d1d906d27d3f9e1b058bb065f897f90c1c7c)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=f5c5bec448cacf8f8ff85d297be131f2e0680972
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed May 31 13:21:58 2017 +0200

    avcodec/cavsdec: Fix runtime error: signed integer overflow: 59 + 2147483600 cannot be represented in type 'int'
    
    Fixes: 1903/clusterfuzz-testcase-minimized-5359318167715840
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 58f8cd4ac576028ef492a005bd06b1f22c3a6879)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=794bcc6eca21a4ac64a282a4150036426e641f7b
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue May 30 21:29:20 2017 +0200

    avformat/avidec: Limit formats in gab2 to srt and ass/ssa
    
    This prevents part of one exploit leading to an information leak
    
    Found-by: Emil Lerner and Pavel Cheremushkin
    Reported-by: Thierry Foucu <tfoucu at google.com>
    
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit a5d849b149ca67ced2d271dc84db0bc95a548abb)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=c82db1441159617c3d779335a357364a9c6ee496
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue May 30 04:03:09 2017 +0200

    avcodec/acelp_pitch_delay: Fix runtime error: value 4.83233e+39 is outside the range of representable values of type 'float'
    
    Fixes: 1902/clusterfuzz-testcase-minimized-4762451407011840
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 87bddba43b725d43767f2a387cdea0936ac1b549)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=343c1d1d7d1fbc2a28c16de9c39530780974a24b
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue May 30 03:13:21 2017 +0200

    avcodec/wavpack: Check float_shift
    
    Fixes: runtime error: shift exponent 40 is too large for 32-bit type 'unsigned int'
    Fixes: 1898/clusterfuzz-testcase-minimized-5970744880136192
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 4020b009d1e88ff10abd25fb768165afa546851d)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=d542185e054192fb3028512c0dae2187cf29607e
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue May 30 03:09:11 2017 +0200

    avcodec/wavpack: Fix runtime error: signed integer overflow: 24 * -2147483648 cannot be represented in type 'int'
    
    Fixes: 1894/clusterfuzz-testcase-minimized-4716739789062144
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit d90c5bf10559554d6f9cd1dfb90767b991b76d5d)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=c92acd5ed48d3931dbbc77329b6aebaacc097184
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Mon May 29 14:07:33 2017 +0200

    avcodec/ansi: Fix frame memleak
    
    Fixes: 1892/clusterfuzz-testcase-minimized-4519341733183488
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit e091b9b3c7859030f2896ca2ae96faa3afc694a1)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=759739e9964fc8c09b4e4dec67be0c435c57d0e9
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Mon May 29 13:45:29 2017 +0200

    avcodec/jpeg2000dec: Use ff_set_dimensions()
    
    Fixes: OOM
    Fixes: 1890/clusterfuzz-testcase-minimized-6329019509243904
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit f3da6fbff864e05e8871dd04222143abdee9e77b)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=27fecc7a73db836781100daa540bf1fff63261ff
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 28 21:54:02 2017 +0200

    avcodec/truemotion2: Fix passing null pointer to memset()
    
    Fixes part of: 1888/clusterfuzz-testcase-minimized-5237704826552320
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit c901627918ff7480c1bb6f9cae507ee2c7c933d8)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=24ab34a3fcf362ff1061a8e4ec9a967f48021bb6
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 28 21:54:02 2017 +0200

    avcodec/truemotion2: Fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int'
    
    Fixes part of: 1888/clusterfuzz-testcase-minimized-5237704826552320
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit c9e884f3d98df85bf7f2cf30d71877b22929fdcb)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=3b3a3b7a5a7f15acc19d0d00d9ce9e46610c3eb0
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 28 21:44:32 2017 +0200

    avcodec/ra144: Fix runtime error: signed integer overflow: -2449 * 1398101 cannot be represented in type 'int'
    
    Fixes: 1885/clusterfuzz-testcase-minimized-5336328549957632
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 7c845450d2daa0d066045cf94ab51cb496f1b824)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=7e7c25a48e592257c0dd358cd5e78f3d3a3db60a
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 28 21:38:24 2017 +0200

    avcodec/ra144: Fix runtime error: signed integer overflow: 11184810 * 404 cannot be represented in type 'int'
    
    Fixes: 1884/clusterfuzz-testcase-minimized-4637425835966464
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 4c472c52525fcab4c80cdbc98b4625d318c84fcb)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=7f0c66b8cf0a27ff28f203aad7bb292bae11b145
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 28 20:08:49 2017 +0200

    avcodec/aac_defines: Add missing () to AAC_HALF_SUM() macro
    
    Fixes: runtime error: shift exponent 1073741848 is too large for 32-bit type 'INTFLOAT' (aka 'int')
    Fixes: 1880/clusterfuzz-testcase-minimized-4900645322620928
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 872bac81590ccbec40ba7ad203421d9e38d1b253)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=62979de16865de7351bb6dd2748c953ee0fc8548
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed May 10 18:37:50 2017 +0200

    avcodec/webp: Fixes null pointer dereference
    
    Fixes: 1470/clusterfuzz-testcase-minimized-5404421666111488
    Fixes: 1472/clusterfuzz-testcase-minimized-5677426430443520
    Fixes: 1875/clusterfuzz-testcase-minimized-5536474562822144
    
    Approved-by: BBB
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 67020711b7d45afa073ef671f755765035a64373)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=a8625d11105fe3f70aa26e54b1a8011d7a9a39fc
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 28 18:09:47 2017 +0200

    avcodec/aacdec_fixed: Fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int'
    
    Fixes: 1878/clusterfuzz-testcase-minimized-6441918630199296
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 6b9cb5d26a2d9905093621d12785bc5903dce66d)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=21cb305903c90df3f3cb8775f4aa59c38863ec05
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 28 17:12:35 2017 +0200

    avcodec/snow: Fix runtime error: signed integer overflow: 1086573993 + 1086573994 cannot be represented in type 'int'
    
    Fixes: 1871/clusterfuzz-testcase-minimized-5719950331215872
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit b9c032ebc0ad17ac0ffefb915ff96baf9d79cab1)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9495075a7f86e8abbe840e00b3d2f94ab8a5614e
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 28 14:00:30 2017 +0200

    avcodec/jpeg2000: Fix runtime error: signed integer overflow: 4185 + 2147483394 cannot be represented in type 'int'
    
    Fixes: 1870/clusterfuzz-testcase-minimized-4686788029317120
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 781f88bb26534ececc76eaa972f02536ba2f0f55)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=5c1c1e89de4eb3c30ad571291bf98ed4394567bb
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 28 13:52:13 2017 +0200

    avcodec/jpeg2000dec: Check tile offsets more completely
    
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 9c1812491f7be2730351969f4abd9b99d300d604)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=aaf104e525b47284031e906c3df9ae2419bd003b
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 28 03:34:09 2017 +0200

    avcodec/aacdec_fixed: Fix multiple runtime error: shift exponent 127 is too large for 32-bit type 'int'
    
    Fixes: 1851/clusterfuzz-testcase-minimized-5692607495667712
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 6c3a63fc3d1be7ac947e38a165a299c9e5d37764)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=bd4dcd873166c5affe2d684a372b279f1f55d818
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 28 03:18:02 2017 +0200

    avcodec/wnv1: More strict buffer size check
    
    This requires at least 25% of a picture to allocate and decode it
    
    Fixes: Timeout
    Fixes: 1845/clusterfuzz-testcase-minimized-5075974343360512
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 7f50c25124a015a539823077bb302ff0c7ce8963)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=25442bd95fdf1f46d3f994e7600ea427654dee8c
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu May 25 03:21:50 2017 +0200

    avcodec/libfdk-aacdec: Correct buffer_size parameter
    
    the timeDataSize argument to aacDecoder_DecodeFrame() seems undocumented and until
    2016 04 (203e3f28fbebec7011342017fafc2a0bda0ce530) unused.
    after that commit libfdk-aacdec interprets it as size in sample units and memsets that on error.
    FFmpeg as well as others (like GStreamer) did interpret it as size in bytes
    
    Fixes: 1442/clusterfuzz-testcase-minimized-4540199973421056 (This requires recent libfdk to reproduce)
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit ca6776a993903dbcfef5ae8a18556c40ecf83e1c)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=ca3fab8c807ddd9705dd1f0bb54ec4162aebc1a6
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue May 23 21:08:48 2017 +0200

    avcodec/sbrdsp_template: Fix: runtime error: signed integer overflow: 849815297 + 1315389781 cannot be represented in type 'int'
    
    Fixes: 1770/clusterfuzz-testcase-minimized-5285511235108864
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 7c36ee216f1e668e2c2af1573bd9dbbb2a501f48)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=1a800e8ff670cfca4fe40bc8cca5490dd6f93d90
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 28 03:03:46 2017 +0200

    avcodec/ivi_dsp: Fix runtime error: left shift of negative value -2
    
    Fixes: 1839/clusterfuzz-testcase-minimized-6238490993885184
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 357f2316a08478a4442e8051978c7b161e10281c)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=3ad48f9acb19c5eb233cd0f1aa90e085cce54cba
Author: Kevin Mark <kmark937 at gmail.com>
Date:   Sat May 27 10:10:46 2017 -0400

    doc/filters: Clarify scale2ref example
    
    Signed-off-by: Kevin Mark <kmark937 at gmail.com>
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 114e8716214d414d7965029ae5fe74668ed69e4a)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=a3ba6a66a3eec0431d3f5bec8253660b9fc8eae7
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sat May 27 13:17:34 2017 +0200

    avcodec/mlpdec: Do not leave invalid values in matrix_out_ch[] on error
    
    Fixes: runtime error: index 12 out of bounds for type 'uint8_t [8]'
    Fixes: 1832/clusterfuzz-testcase-minimized-6574546079449088
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit ac8dfcbd89a818b786d05ebc1af70f7bf6aeb86e)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=385642f8c86c443e75abceb309110a33d3f278ea
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sat May 27 13:07:00 2017 +0200

    avcodec/ra144dec: Fix runtime error: left shift of negative value -17
    
    Fixes: 1830/clusterfuzz-testcase-minimized-5828293733384192
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 53c0c637d36c1de9ea461a8d863e8703da090894)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=780c360e760b4e6734570a534a1798bd092adc22
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Fri May 26 18:01:31 2017 +0200

    avformat/mux: Fix copy an paste typo
    
    Found-by: Roger Scott <rscott at grammatech.com>
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 1a36354698fc0453ba4d337786d2cb4d3e374cfb)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=278bd748a8b64106f098de3f6eb328576731b2f0
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Fri Apr 7 13:49:09 2017 +0200

    avutil/internal: Do not enable CHECKED with DEBUG
    
    This avoids potential undefined behavior in debug mode while still allowing
    developers which want to check for potential additional overflows to do so
    by manually enabling this.
    
    Reviewed-by: wm4
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit a44b3abb4cf922e379fbac55452d0482a8223597)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=7fe0a0e9e73aad6dfb07d65332d13bbfa6d38312
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu May 25 23:01:27 2017 +0200

    avcodec/aacdec_fixed: Fix runtime error: signed integer overflow: -2147483648 * -1 cannot be represented in type 'int'
    
    Fixes: 1825/clusterfuzz-testcase-minimized-6002833050566656
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 8e87d146d798ca25d8f3a4520a6deb7946b39d73)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=6185b5e9bcbf1ceed0129717bd1b8533b60223ff
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu May 25 20:07:49 2017 +0200

    avcodec/smc: Check remaining input
    
    Fixes: Timeout
    Fixes: 1818/clusterfuzz-testcase-minimized-5039166473633792
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 356194fcb17375de2472f4cbff6ede48d6a374b2)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=16f76d544db9fb0aeb32afabc076b1f7bce7cd5f
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu May 25 11:11:33 2017 +0200

    avcodec/jpeg2000dec: Fix copy and paste error
    
    Found-by: jamrial
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 5782e0ba8cc30bb08a806cdeda1adfb89a0556b4)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=c071e74aad6a13b46fa8b2d66f5d6d9a6d4beae0
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed May 24 19:40:42 2017 +0200

    avcodec/jpeg2000dec: Check tile offsets
    
    Fixes: runtime error: signed integer overflow: 4096 - -2147483648 cannot be represented in type 'int'
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 89325417e7b33f4b08171d9d609c48662d96b2d3)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=5753c06dd79fcd1e49db87407784921c35810950
Author: Max Justicz <maxj at mit.edu>
Date:   Wed May 24 15:25:50 2017 +0200

    avcodec/sanm: Fix uninitialized reference frames
    
    Fixes: poc.snm
    
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit ca616b0f72c65b0ef5f9e1e6125698b15f50a26e)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=4e8405b347bf46bd6d0b5ad302a6750122c7baa9
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Tue May 23 22:18:52 2017 +0200

    avcodec/jpeglsdec: Check get_bits_left() before decoding a picture
    
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 4bc3008d04451cd31818e21703ed7ed96b6ff074)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=0169072409cf02d3775ce2925dd86776256619ea
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Mon May 22 01:19:50 2017 +0200

    avcodec/ivi_dsp: Fix multiple runtime error: left shift of negative value -71
    
    Fixes: 1734/clusterfuzz-testcase-minimized-5385630815092736
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 8fb00b3e858b7a5aeccfe6bdfc10290c2121c3ec)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9a993c5bc89e2c14d7ecf41a282b44f4cc083369
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 21 21:49:54 2017 +0200

    avcodec/mjpegdec: Fix runtime error: signed integer overflow: -32767 * 130560 cannot be represented in type 'int'
    
    Fixes: 1724/clusterfuzz-testcase-minimized-4842395432648704
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 40fa6a2fa2c255293a780a194eecae5df52644a1)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=96f0b1de49592044eee5ca2c549ecb81b31d3a3f
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 21 16:53:55 2017 +0200

    avcodec/aacdec_fixed: Fix runtime error: shift exponent 34 is too large for 32-bit type 'int'
    
    Fixes: 1721/clusterfuzz-testcase-minimized-4719352135811072
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit b5228e44c7f3a5eba537c8a39a45cfbf2961a28d)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=0e003452c040b5b35f1aa33f4596540efa47f2a3
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 21 16:01:27 2017 +0200

    avcodec/mpeg4videodec: Check for multiple VOL headers
    
    Fixes multiple: runtime error: signed integer overflow: 2147115008 + 413696 cannot be represented in type 'int'
    Fixes: 1723/clusterfuzz-testcase-minimized-5309409372667904
    Fixes: 1727/clusterfuzz-testcase-minimized-5900685306494976
    Fixes: 1737/clusterfuzz-testcase-minimized-5922321338466304
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit efeb47fd5d5cbf980e52a6d5e741c3c74b94b5e2)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=c06677aab1eb620780a450e2fb6c8f50bcdf2ccf
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 21 13:22:16 2017 +0200

    avcodec/vmnc: Check location before use
    
    Fixes: runtime error: signed integer overflow: 65535 * 64256 cannot be represented in type 'int'
    Fixes: 1717/clusterfuzz-testcase-minimized-5491696676634624
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit ec2b76aab44f55be22eb12d86eb0dfd2eff68581)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=d7b53e87b9e572e349a36e7c0eb6a08a981ab8a7
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Wed May 17 00:07:02 2017 +0200

    avcodec/takdec: Fix runtime error: signed integer overflow: 8192 * 524308 cannot be represented in type 'int'
    
    Fixes: 1630/clusterfuzz-testcase-minimized-6326111917047808
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 955db411929a9876d3cd016fbbb9c49b6362feba)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=4cad001b049477078f33bf752f3fbc2448fc139f
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 21 02:51:04 2017 +0200

    avcodec/aac_defines: Fix: runtime error: left shift of negative value -2
    
    Fixes: 1716/clusterfuzz-testcase-minimized-4691012196761600
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit c3547dcbc326474745f02a618e01848a293f3f92)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=02b8d62a8c0383cbbaea4d48d871a60c56b41819
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 21 02:46:55 2017 +0200

    avcodec/takdec: Fix runtime error: left shift of negative value -63
    
    Fixes: 1713/clusterfuzz-testcase-minimized-5791887476654080
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit d66193252b4067144f11211f8f3e1d5a50146235)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=fcc87a4676bcf1d4107fa939f0cc239b5b201926
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 21 02:42:12 2017 +0200

    avcodec/mlpdsp: Fix runtime error: signed integer overflow: -24419392 * 128 cannot be represented in type 'int'
    
    Fixes: 1711/clusterfuzz-testcase-minimized-5248503515185152
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 1d04fc94e1021b70e542dc01a48b8398c6fc6325)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9b7c194ba1d726d80745c019d5a8d19d1b28c166
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 21 01:43:04 2017 +0200

    avcodec/sbrdsp_fixed: fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int'
    
    Fixes: part of 1709/clusterfuzz-testcase-minimized-4513580554649600
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 384508b2ff69bc3fad1e1c2e7de0dcd0913c6208)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=6bd5fcc463c57ced03087bec9160dbdf461be174
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sun May 21 00:06:10 2017 +0200

    avcodec/aacsbr_fixed: Fix multiple runtime error: shift exponent 170 is too large for 32-bit type 'int'
    
    Fixes part of 1709/clusterfuzz-testcase-minimized-4513580554649600
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 6310fc714de3cd73848416ead73228fcef8b6dc0)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=f6fbc874d1e34cc2f7a028478d47c45547eb6d4c
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Sat May 20 01:23:01 2017 +0200

    avcodec/mlpdec: Do not leave a invalid num_primitive_matrices in the context
    
    Fixes: runtime error: index 8 out of bounds for type 'uint8_t [8]'
    Fixes: 1699/clusterfuzz-testcase-minimized-6327177438035968
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 64ea4d102a070b95832ae4a751688f87da7760a2)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=9532ad523ec5b8164ce377bfebf92776d5da898b
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Fri May 19 12:25:52 2017 +0200

    avcodec/aacsbr_fixed: Fix multiple runtime error: shift exponent 150 is too large for 32-bit type 'int'
    
    Fixes: 1681/clusterfuzz-testcase-minimized-5970545365483520
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit 3fb104f4476ad238e2ca768e9b80dc314e6e856d)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=053ca03564488a03a49ce7e80add370f2724ce26
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu May 18 17:46:56 2017 +0200

    avcodec/mimic: Use ff_set_dimensions() to set the dimensions
    
    Fixes: OOM
    Fixes: 1671/clusterfuzz-testcase-minimized-4759078033162240
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit e434840fd4b3c854beec845f950b80bc1bf93b60)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>

URL:    http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit;h=1de61c6b015f8f33e3d325db8a12cb3a919dc918
Author: Michael Niedermayer <michael at niedermayer.cc>
Date:   Thu May 18 17:13:18 2017 +0200

    avcodec/fic: Fix multiple runtime error: signed integer overflow: 5793 * 419752 cannot be represented in type 'int'
    
    Fixes: 1669/clusterfuzz-testcase-minimized-5287529198649344
    
    Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
    (cherry picked from commit a173f484b52ed63292439de5347e49bd78cad0ed)
    Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>



More information about the ffmpeg-cvslog mailing list