mirror of https://git.ffmpeg.org/ffmpeg.git
avcodec/fmvc: Fix off by 1 error
Fixes: out of array access Fixes: 1643/clusterfuzz-testcase-minimized-6117573403869184 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/targets/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
This commit is contained in:
Michael Niedermayer
parent
0e87c07d87
commit
e11dcc35bb
|
|
@ -459,7 +459,7 @@ static int decode_frame(AVCodecContext *avctx,
|
|||
int size, offset, start = 0;
|
||||
|
||||
offset = bytestream2_get_le16(gb);
|
||||
if (offset > s->nb_blocks)
|
||||
if (offset >= s->nb_blocks)
|
||||
return AVERROR_INVALIDDATA;
|
||||
|
||||
size = bytestream2_get_le16(gb);
|
||||
|
|
|
|||
Loading…
Reference in New Issue