path: root/ffmpeg3/CVE-2018-6621.patch

    1 --- a/libavcodec/utvideodec.c	2017-12-11 05:35:09.000000000 +0800
    2 +++ b/libavcodec/utvideodec.c	2018-02-06 15:54:54.872000000 +0800
    3 @@ -561,7 +561,7 @@ static int decode_frame(AVCodecContext *
    4              for (j = 0; j < c->slices; j++) {
    5                  slice_end   = bytestream2_get_le32u(&gb);
    6                  if (slice_end < 0 || slice_end < slice_start ||
    7 -                    bytestream2_get_bytes_left(&gb) < slice_end) {
    8 +                    bytestream2_get_bytes_left(&gb) < slice_end + 1024LL) {
    9                      av_log(avctx, AV_LOG_ERROR, "Incorrect slice size\n");
   10                      return AVERROR_INVALIDDATA;
   11                  }