Leo Izen 829680f96a avcodec/jpegxl_parser: add sanity check for frame size ...

If a frame size is absolutely massive, this can spin the parser as it
attempts to decode a permuted TOC. We add a sanity check here for eight
times the size of the image for an internal frame to prevent malicious
bitstreams from slowing the parser down to a crawl.

Signed-off-by: Leo Izen <leo.izen@gmail.com>
Reported-by: Kacper Michajłow <kasper93@gmail.com>

2025-07-23 06:22:16 -04:00

49 KiB

Raw Blame History

View Raw