projects / libde265.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 2a5f500)
CVE-2023-49467
authorDebian Multimedia Maintainers <debian-multimedia@lists.debian.org>
Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)
committerThorsten Alteholz <debian@alteholz.de>
Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)
commit 7e4faf254bbd2e52b0f216cb987573a2cce97b54
Author: Dirk Farin <dirk.farin@gmail.com>
Date:   Thu Nov 23 19:38:34 2023 +0100

    prevent endless loop for #434 input

Gbp-Pq: Name CVE-2023-49467.patch

libde265/slice.cc patch | blob | history

diff --git a/libde265/slice.cc b/libde265/slice.cc
index 435123dc587e07718153c0128a78e328435b6a06..3a8a8de11fba2ba8a8a864ac510785f4104bc7b0 100644 (file)
--- a/libde265/slice.cc
+++ b/libde265/slice.cc
@@ -2582,6 +2582,11 @@ static int decode_rqt_root_cbf(thread_context* tctx)
 
 static int decode_ref_idx_lX(thread_context* tctx, int numRefIdxLXActive)
 {
+  // prevent endless loop when 'numRefIdxLXActive' is invalid
+  if (numRefIdxLXActive <= 1) {
+    return 0;
+  }
+
   logtrace(LogSlice,"# ref_idx_lX\n");
 
   int cMax = numRefIdxLXActive-1;
Unnamed repository; edit this file 'description' to name the repository.