CVE-2023-49468

author Debian Multimedia Maintainers <debian-multimedia@lists.debian.org>

Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)

committer Thorsten Alteholz <debian@alteholz.de>

Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)
author Debian Multimedia Maintainers <debian-multimedia@lists.debian.org>
Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)
committer Thorsten Alteholz <debian@alteholz.de>
Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)
diff --git a/libde265/image.h b/libde265/image.h

index 0b53605475954dd4371bbaebc5f0aef8132afcae..0a0c0e3225fe92463e8c1a4ff725e3f80c0e170e 100644 (file)
--- a/libde265/image.h
+++ b/libde265/image.h
@@ -624,7 +624,14 @@ public:
  
    enum IntraPredMode get_IntraPredMode(int x,int y) const
    {
-    return (enum IntraPredMode)intraPredMode.get(x,y);
+    uint8_t ipm = intraPredMode.get(x,y);
+
+    // sanitize values if IPM is uninitialized (because of earlier read error)
+    if (ipm > 34) {
+      ipm = 0;
+    }
+
+    return static_cast<enum IntraPredMode>(ipm);
    }
  
    enum IntraPredMode get_IntraPredMode_atIndex(int idx) const
author	Debian Multimedia Maintainers <debian-multimedia@lists.debian.org>
	Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)
committer	Thorsten Alteholz <debian@alteholz.de>
	Fri, 29 Dec 2023 22:03:02 +0000 (23:03 +0100)