From patchwork Thu Jun 27 00:40:34 2024 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit X-Patchwork-Submitter: Kacper Michajlow X-Patchwork-Id: 50183 Delivered-To: ffmpegpatchwork2@gmail.com Received: by 2002:a59:bc92:0:b0:482:c625:d099 with SMTP id p18csp160389vqy; Wed, 26 Jun 2024 17:41:42 -0700 (PDT) X-Forwarded-Encrypted: i=2; AJvYcCVz/gW5WOj+1FEjF8YVXOaL/JiRWCEHlFLXp1xTV9TQOjUnfdHP/3xgXKJHAf2HJXGh6HsQEH+b8NevE2Rbz+RgKf4aYAQS2udl/A== X-Google-Smtp-Source: AGHT+IHeP2nDZA3UzbdmnSpfcrN5bO/E4O/S1p3y9bE8g/vAQNWYO0ICBRkVZvzIgbH4lOWu9Bd9 X-Received: by 2002:a05:6000:906:b0:362:a5ff:5f9a with SMTP id ffacd0b85a97d-366e9499613mr8617378f8f.22.1719448902374; Wed, 26 Jun 2024 17:41:42 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1719448902; cv=none; d=google.com; s=arc-20160816; b=fK4g7OIBdbU+v0Wv6l2CjhPsoZXD3lmSCkY5yZKWgRj5+joZP0634HJ0wi5UeVMfa3 j7Y1sN4s1QALtlQQLh0P+S2wJWhNjlcKdBKNJvW9JNhlnbUP+FuTb+acynMMzqBXf5P+ ryP1F1YzgyGGCb3f7nhOIA6MDQ3hyUVYxAIsPBWOq9nhijEX1r2LQ3bKo4EP86LiH9Sm loq51J6+K70Fdjr6+yzR/yFnNkSrcgC4ZkxZfz+VQNEajOzwmM48N/eLIFUzEwSSHcT9 o05pnvoC0N1OyUpKkpstOYK0TzNUu0QBjiyC+D75PXPv2QMIOCur2ZZN696bL46EzXiG c0jw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=sender:errors-to:content-transfer-encoding:cc:reply-to :list-subscribe:list-help:list-post:list-archive:list-unsubscribe :list-id:precedence:subject:mime-version:message-id:date:to:from :dkim-signature:delivered-to; bh=/9JXZClyGDgrplh87qSXtWRHzXH7k5eaD1jncZivxUI=; fh=VehHF75ibtIiOcMFupA+RvAd8F/HWiWMZFlcjyRnn54=; b=uh3LgIqCi+LPOHgi+MiK9DdKE17JpLqjHKU6/ZkSxMANLPWIK0xJeDnQl5PTs/QzcK jdMoHuSOLak8H2p9W4rlDzf6hcFT+Y8gX8HuEUJTXHJw9rCPUOGdz1OY4gOnPTq221cp 1PK4xR+mJkioa9ioe7O8ueoXu59VEz785lMQ6WtmfWu+TL1U3V8XePzVgV4fLR0soqUq Q+9+xUnBgUiEZ0KOgOsMdUBbrocSwAZ5u5gIW+wxkjH+mOt7E9hs8JsqGfZ7273wi/YT Hy/HBBZbXByLPn0yTnN53iVo7iOyDW32+dbq0l2KGCtHdEV/8Von6HLV88k6Y4bDcJwa ibBg==; dara=google.com ARC-Authentication-Results: i=1; mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20230601 header.b=UyNQ6+TE; spf=pass (google.com: domain of ffmpeg-devel-bounces@ffmpeg.org designates 79.124.17.100 as permitted sender) smtp.mailfrom=ffmpeg-devel-bounces@ffmpeg.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from ffbox0-bg.mplayerhq.hu (ffbox0-bg.ffmpeg.org. [79.124.17.100]) by mx.google.com with ESMTP id a640c23a62f3a-a729d6fbf5csi7426066b.185.2024.06.26.17.41.41; Wed, 26 Jun 2024 17:41:42 -0700 (PDT) Received-SPF: pass (google.com: domain of ffmpeg-devel-bounces@ffmpeg.org designates 79.124.17.100 as permitted sender) client-ip=79.124.17.100; Authentication-Results: mx.google.com; dkim=neutral (body hash did not verify) header.i=@gmail.com header.s=20230601 header.b=UyNQ6+TE; spf=pass (google.com: domain of ffmpeg-devel-bounces@ffmpeg.org designates 79.124.17.100 as permitted sender) smtp.mailfrom=ffmpeg-devel-bounces@ffmpeg.org; dmarc=fail (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: from [127.0.1.1] (localhost [127.0.0.1]) by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTP id 653DC68D07E; Thu, 27 Jun 2024 03:41:38 +0300 (EEST) X-Original-To: ffmpeg-devel@ffmpeg.org Delivered-To: ffmpeg-devel@ffmpeg.org Received: from mail-lf1-f53.google.com (mail-lf1-f53.google.com [209.85.167.53]) by ffbox0-bg.mplayerhq.hu (Postfix) with ESMTPS id 1FC5968D07E for ; Thu, 27 Jun 2024 03:41:31 +0300 (EEST) Received: by mail-lf1-f53.google.com with SMTP id 2adb3069b0e04-52cd80e55efso9974689e87.0 for ; Wed, 26 Jun 2024 17:41:31 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1719448890; x=1720053690; darn=ffmpeg.org; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:from:to:cc:subject:date:message-id:reply-to; bh=3rVVkfl5a4ao+yT0AuYwDx44nxwiR4iAT5A41pkMz7c=; b=UyNQ6+TEjEWGIz744p/3vDb5niIHsdK5B+tdSABQG01ABPZHD0+uo/F+qqs+IGQofY w7w6PaNG1MA+gCp6pjNHPA2Nj5MhuXQn6HYIBjJbe30zDHf6K8hHPdlFf7yetBbtrncE RYFsMFIXrI7Ejz5RTLygCRt0AhRn0caTtfyiPcHZfj/gDfLn9payjnbp+mbz65+CUvWO h8jFvIrTIgUk7y823buJ53QmBnLApO4194F3WdfLV/yVuZwKWnXM2qnp7ZX+xc0tPG6q JgKdvczP/Vxabe2abs9HHpbVMlfBL2YbiID8gFSyMqaPTa2+cukbjmPFkHOhQb18pDmW a6Uw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1719448890; x=1720053690; h=content-transfer-encoding:mime-version:message-id:date:subject:cc :to:from:x-gm-message-state:from:to:cc:subject:date:message-id :reply-to; bh=3rVVkfl5a4ao+yT0AuYwDx44nxwiR4iAT5A41pkMz7c=; b=B9K+3KMP5slru2cCFhDb8d6tCkTbo9vcXZyn0X4JWpL1U5H7rIR89SMcEjQ/SrCwRL Qy6EVo6uXKuPtZp5ZTS7O4bITZnMYq5hKkumQc/QMKgOxEcEx7vlUR6LOvV7ms0iK8k0 DYP9pFhF6PNaJMdxATbTLK632qPZgFKQpOhlP/AcRigsTsrkV4Sh3p2ImXxsNp6PicT1 Y1XAP1K89i+qOLNcBttaoQsietqRwcvrRY4QmlDVQISw16YqPkMfgpc6F0AtaLroJ2u1 w2VTQ+B2GfIpnMQH6M1HPmnNt78eMFdheC0EPoy2DZEDLKZ8WPjX7Odyp6lPZrvqj1fH Wvzw== X-Gm-Message-State: AOJu0Yyn7qarMyyyz8GOSJmbFtCVPkFY8eDtRPTAU1PitGwog0x9sYB8 VM/CA9z/ZR6p6hQTIi1PENrj+wkZydjuNXlohx541p0/0Mz8fUXlkYAPPw== X-Received: by 2002:a05:6512:358b:b0:52c:cb8d:637d with SMTP id 2adb3069b0e04-52ce182bca2mr8435014e87.5.1719448889502; Wed, 26 Jun 2024 17:41:29 -0700 (PDT) Received: from localhost.localdomain (89-74-12-251.dynamic.chello.pl. [89.74.12.251]) by smtp.gmail.com with ESMTPSA id 2adb3069b0e04-52e71313206sm18547e87.188.2024.06.26.17.41.28 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Wed, 26 Jun 2024 17:41:29 -0700 (PDT) From: =?utf-8?q?Kacper_Michaj=C5=82ow?= To: ffmpeg-devel@ffmpeg.org Date: Thu, 27 Jun 2024 02:40:34 +0200 Message-ID: <20240627004037.1336-1-kasper93@gmail.com> X-Mailer: git-send-email 2.43.0 MIME-Version: 1.0 Subject: [FFmpeg-devel] [PATCH 1/4] avcodec/jpegxl_parser: ensure input padding is zeroed X-BeenThere: ffmpeg-devel@ffmpeg.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: FFmpeg development discussions and patches List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: FFmpeg development discussions and patches Cc: =?utf-8?q?Kacper_Michaj=C5=82ow?= Errors-To: ffmpeg-devel-bounces@ffmpeg.org Sender: "ffmpeg-devel" X-TUID: 0z2pRUpLqi/c Fixes use of uninitialized value, reported by MSAN. Found by OSS-Fuzz. Signed-off-by: Kacper Michajłow --- libavcodec/jpegxl_parser.c | 1 + 1 file changed, 1 insertion(+) diff --git a/libavcodec/jpegxl_parser.c b/libavcodec/jpegxl_parser.c index 8c45e1a1b7..f833f844c4 100644 --- a/libavcodec/jpegxl_parser.c +++ b/libavcodec/jpegxl_parser.c @@ -1419,6 +1419,7 @@ static int try_parse(AVCodecParserContext *s, AVCodecContext *avctx, JXLParseCon } cs_buffer = ctx->cs_buffer; cs_buflen = FFMIN(sizeof(ctx->cs_buffer) - AV_INPUT_BUFFER_PADDING_SIZE, ctx->copied); + memset(ctx->cs_buffer + cs_buflen, 0, AV_INPUT_BUFFER_PADDING_SIZE); } else { cs_buffer = buf; cs_buflen = buf_size;