From: Debian Multimedia Maintainers <debian-multimedia@lists.debian.org>
Date: Fri, 29 Dec 2023 22:03:02 +0000 (+0100)
Subject: CVE-2023-43887
X-Git-Tag: archive/raspbian/1.0.11-1+rpi1+deb12u2^2~5
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=5f0a0094573ee57a9146ad5b9afafb69fa80de0e;p=libde265.git

CVE-2023-43887

commit 63b596c915977f038eafd7647d1db25488a8c133
Author: Dirk Farin <dirk.farin@gmail.com>
Date:   Fri Sep 1 21:18:48 2023 +0200

    fix #418


Gbp-Pq: Name CVE-2023-43887.patch
---

diff --git a/libde265/decctx.cc b/libde265/decctx.cc
index 3eb5daa..0747c69 100644
--- a/libde265/decctx.cc
+++ b/libde265/decctx.cc
@@ -854,16 +854,17 @@ de265_error decoder_context::read_pps_NAL(bitreader& reader)
   std::shared_ptr<pic_parameter_set> new_pps = std::make_shared<pic_parameter_set>();
 
   bool success = new_pps->read(&reader,this);
+  if (!success) {
+    return DE265_WARNING_PPS_HEADER_INVALID;
+  }
 
   if (param_pps_headers_fd>=0) {
     new_pps->dump(param_pps_headers_fd);
   }
 
-  if (success) {
-    pps[ (int)new_pps->pic_parameter_set_id ] = new_pps;
-  }
+  pps[ (int)new_pps->pic_parameter_set_id ] = new_pps;
 
-  return success ? DE265_OK : DE265_WARNING_PPS_HEADER_INVALID;
+  return DE265_OK;
 }
 
 de265_error decoder_context::read_sei_NAL(bitreader& reader, bool suffix)