mirror of https://git.ffmpeg.org/ffmpeg.git
tools/target_dec_fuzzer: Use av_buffer_allocz() to avoid missing slices to have unpredictable content
This matches production code which also zeros these buffers Fixes: use of uninitialized values Fixes: 70885/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_VP6F_fuzzer-4610946029387776 (and likely others) Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
This commit is contained in:
parent
cda5f5c5ed
commit
1b8d95da3a
|
@ -129,7 +129,7 @@ static int fuzz_video_get_buffer(AVCodecContext *ctx, AVFrame *frame)
|
||||||
|
|
||||||
frame->extended_data = frame->data;
|
frame->extended_data = frame->data;
|
||||||
for (i = 0; i < 4 && size[i]; i++) {
|
for (i = 0; i < 4 && size[i]; i++) {
|
||||||
frame->buf[i] = av_buffer_alloc(size[i]);
|
frame->buf[i] = av_buffer_allocz(size[i]);
|
||||||
if (!frame->buf[i])
|
if (!frame->buf[i])
|
||||||
goto fail;
|
goto fail;
|
||||||
frame->data[i] = frame->buf[i]->data;
|
frame->data[i] = frame->buf[i]->data;
|
||||||
|
|
Loading…
Reference in New Issue