avcodec/vorbisdec: Check codebook float values to be finite

Fixes: Timeout Fixes: 55116/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_VORBIS_fuzzer-4572159970508800 Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
2023-02-12 22:49:01 +01:00 · 2023-02-12 22:49:01 +01:00 · cadd7e7a75
parent 99dc751782
commit cadd7e7a75
1 changed files with 4 additions and 0 deletions
--- a/libavcodec/vorbisdec.c
+++ b/libavcodec/vorbisdec.c
@ -368,6 +368,10 @@ static int vorbis_parse_setup_hdr_codebooks(vorbis_context *vc)
            unsigned codebook_value_bits = get_bits(gb, 4) + 1;
            unsigned codebook_sequence_p = get_bits1(gb);

+            if (!isfinite(codebook_minimum_value) || !isfinite(codebook_delta_value)) {
+                ret = AVERROR_INVALIDDATA;
+                goto error;
+            }
            ff_dlog(NULL, " We expect %d numbers for building the codevectors. \n",
                    codebook_lookup_values);
            ff_dlog(NULL, "  delta %f minmum %f \n",