CVE-2023-49465

author Debian Multimedia Maintainers <debian-multimedia@lists.debian.org>

Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)

committer Thorsten Alteholz <debian@alteholz.de>

Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)
author Debian Multimedia Maintainers <debian-multimedia@lists.debian.org>
Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)
committer Thorsten Alteholz <debian@alteholz.de>
Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)
diff --git a/libde265/motion.cc b/libde265/motion.cc

index f33e23fc8e9279f7179600ec755fbb19e934e716..f4fa068ef2b1a6aa042a4ed5f81b49d66c020e0f 100644 (file)
--- a/libde265/motion.cc
+++ b/libde265/motion.cc
@@ -1859,7 +1859,14 @@ void derive_spatial_luma_vector_prediction(base_context* ctx,
        logmvcand(vi);
  
        const de265_image* imgX = NULL;
-      if (vi.predFlag[X]) imgX = ctx->get_image(shdr->RefPicList[X][ vi.refIdx[X] ]);
+      if (vi.predFlag[X]) {
+        if (vi.refIdx[X] < 0 || vi.refIdx[X] >= MAX_NUM_REF_PICS) {
+          return;
+        }
+
+        imgX = ctx->get_image(shdr->RefPicList[X][ vi.refIdx[X] ]);
+      }
+
        const de265_image* imgY = NULL;
        if (vi.predFlag[Y]) imgY = ctx->get_image(shdr->RefPicList[Y][ vi.refIdx[Y] ]);
author	Debian Multimedia Maintainers <debian-multimedia@lists.debian.org>
	Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)
committer	Thorsten Alteholz <debian@alteholz.de>
	Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)