CVE-2017-14767

author Markus Koschany <apo@debian.org>

Sun, 30 Dec 2018 16:39:40 +0000 (17:39 +0100)

committer Mike Gabriel <sunweaver@debian.org>

Mon, 21 Jan 2019 14:30:50 +0000 (14:30 +0000)
author Markus Koschany <apo@debian.org>
Sun, 30 Dec 2018 16:39:40 +0000 (17:39 +0100)
committer Mike Gabriel <sunweaver@debian.org>
Mon, 21 Jan 2019 14:30:50 +0000 (14:30 +0000)
diff --git a/libavformat/rtpdec_h264.c b/libavformat/rtpdec_h264.c

index abf1f39279690b0d7e1f376c5af3ae3287c9686c..72f645fce25ba60c412123555c8fed54e4ba4481 100644 (file)
--- a/libavformat/rtpdec_h264.c
+++ b/libavformat/rtpdec_h264.c
@@ -116,6 +116,11 @@ static int sdp_parse_fmtp_config_h264(AVFormatContext *s,
          codec->extradata_size = 0;
          av_freep(&codec->extradata);
  
+        if (*value == 0 || value[strlen(value) - 1] == ',') {
+             av_log(s, AV_LOG_WARNING, "Missing PPS in sprop-parameter-sets, ignoring\n");
+             return 0;
+         }
+
          while (*value) {
              char base64packet[1024];
              uint8_t decoded_packet[1024];
author	Markus Koschany <apo@debian.org>
	Sun, 30 Dec 2018 16:39:40 +0000 (17:39 +0100)
committer	Mike Gabriel <sunweaver@debian.org>
	Mon, 21 Jan 2019 14:30:50 +0000 (14:30 +0000)