[FFmpeg-devel] [PATCH] ogg: Fix OOB write during ogg_read_seek()
Reimar Döffinger
Reimar.Doeffinger at gmx.de
Tue Apr 17 08:52:57 CEST 2012
On 16 Apr 2012, at 22:57, dalecurtis at chromium.org wrote:
> From: Dale Curtis <dalecurtis at chromium.org>
>
> Prevents an OOB write of size 4 when ogg_read_seek is called with
> a stream_index >= ogg->nstreams.
>
> In this case s->nb_streams == 3, yet ogg->nstreams == 1 and
> stream_index == 1; causing os->keyframe_seek = 1 to write OOB.
I think something must have gone seriously wrong at the point where those stream counts started to differ and you are just covering up for the real bug...
More information about the ffmpeg-devel
mailing list