avformat/mov: Disallow FTYP after streams

Fixes: Assertion !c->fc->nb_streams failed at libavformat/mov.c:7799 Fixes: 63875/clusterfuzz-testcase-minimized-ffmpeg_dem_MOV_fuzzer-5479178702815232 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit 19fcf4313148e86aa47d81a8d5d5e8d056f1f906) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
2025-02-04 06:08:26 +02:00 · 2023-11-08 01:37:11 +01:00 · 2023-11-08 01:37:11 +01:00 · b49de8dfe6
commit b49de8dfe6
parent a3440ddec3
1 changed files with 2 additions and 0 deletions
--- a/libavformat/mov.c
+++ b/libavformat/mov.c
@ -1130,6 +1130,8 @@ static int mov_read_ftyp(MOVContext *c, AVIOContext *pb, MOVAtom atom)
    int ret = ffio_read_size(pb, type, 4);
    if (ret < 0)
        return ret;
+    if (c->fc->nb_streams)
+        return AVERROR_INVALIDDATA;

    if (strcmp(type, "qt  "))
        c->isom = 1;