virtualenv/FFmpeg
1
0
Fork 0
mirror of https://github.com/FFmpeg/FFmpeg.git synced 2025-10-06 05:47:18 +02:00
Code Issues Releases Activity

avcodec/ilbcdec: Clear cbvec when used with create_augmented_vector()

Browse Source 
Fixes: use of uninitialized memory
Fixes: 42538134/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_ILBC_fuzzer-6322020827070464

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
This commit is contained in:
Michael Niedermayer
2025-08-08 15:03:56 +02:00
parent e29a99a975
commit 9686fdd729
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
libavcodec/ilbcdec.c
View File

@@ -675,6 +675,7 @@ static void get_codebook(int16_t * cbvec, /* (o) Constructed codebook vector *
/* get vector */ /* get vector */
memcpy(cbvec, mem + lMem - k, cbveclen * 2); memcpy(cbvec, mem + lMem - k, cbveclen * 2);
} else if (index < base_size) { } else if (index < base_size) {
memset(cbvec, 0, cbveclen * 2);
/* Calculate lag */ /* Calculate lag */
@@ -701,6 +702,7 @@ static void get_codebook(int16_t * cbvec, /* (o) Constructed codebook vector *
filter_mafq12(&mem[memIndTest + 4], cbvec, kCbFiltersRev, CB_FILTERLEN, cbveclen); filter_mafq12(&mem[memIndTest + 4], cbvec, kCbFiltersRev, CB_FILTERLEN, cbveclen);
} else { } else {
memset(cbvec, 0, cbveclen * 2);
/* interpolated vectors */ /* interpolated vectors */
/* Stuff zeros outside memory buffer */ /* Stuff zeros outside memory buffer */
memIndTest = lMem - cbveclen - CB_FILTERLEN; memIndTest = lMem - cbveclen - CB_FILTERLEN;