From: jeanlf <jeanlf@gpac.io>
Date: Mon, 30 Aug 2021 15:20:00 +0000 (+0200)
Subject: [PATCH] fixed #1900
X-Git-Tag: archive/raspbian/1.0.1+dfsg1-4+rpi1+deb11u3^2~83
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=12c0bfb3f53a1e0fbf584c9c591273ba3dc0f613;p=gpac.git

[PATCH] fixed #1900


Gbp-Pq: Name CVE-2021-40568.patch
---

diff --git a/src/media_tools/av_parsers.c b/src/media_tools/av_parsers.c
index e92cd16..aa9eda1 100644
--- a/src/media_tools/av_parsers.c
+++ b/src/media_tools/av_parsers.c
@@ -5669,7 +5669,7 @@ static s32 svc_parse_slice(GF_BitStream *bs, AVCState *avc, AVCSliceInfo *si)
 	if (si->slice_type > 9) return -1;
 
 	pps_id = gf_bs_get_ue(bs);
-	if (pps_id > 255)
+	if ((pps_id < 0) || (pps_id > 255))
 		return -1;
 	si->pps = &avc->pps[pps_id];
 	si->pps->id = pps_id;