Message ID | 20191031175830.24895-2-michael@niedermayer.cc |
---|---|
State | New |
Headers | show |
diff --git a/libavcodec/wmadec.c b/libavcodec/wmadec.c index 78b51e5871..25c1d9a452 100644 --- a/libavcodec/wmadec.c +++ b/libavcodec/wmadec.c @@ -828,6 +828,8 @@ static int wma_decode_superframe(AVCodecContext *avctx, void *data, buf_size, avctx->block_align); return AVERROR_INVALIDDATA; } + if (avctx->block_align < 0) + return AVERROR_INVALIDDATA; if (avctx->block_align) buf_size = avctx->block_align;
Fixes: out of array access Fixes: 18432/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_WMAV2_fuzzer-5675574936207360 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> --- libavcodec/wmadec.c | 2 ++ 1 file changed, 2 insertions(+)