From: Debian Multimedia Maintainers <debian-multimedia@lists.debian.org>
Date: Fri, 29 Dec 2023 22:03:02 +0000 (+0100)
Subject: CVE-2023-49468
X-Git-Tag: archive/raspbian/1.0.11-0+deb10u6+rpi1^2~1
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=b6ac40f0f85f076d079c7a61a055478da029910a;p=libde265.git

CVE-2023-49468

commit 3e822a3ccf88df1380b165d6ce5a00494a27ceeb
Author: Dirk Farin <dirk.farin@gmail.com>
Date:   Thu Nov 23 19:11:34 2023 +0100

    fix #432 (undefined IPM)


Gbp-Pq: Name CVE-2023-49468.patch
---

diff --git a/libde265/image.h b/libde265/image.h
index 0b53605..0a0c0e3 100644
--- a/libde265/image.h
+++ b/libde265/image.h
@@ -624,7 +624,14 @@ public:
 
   enum IntraPredMode get_IntraPredMode(int x,int y) const
   {
-    return (enum IntraPredMode)intraPredMode.get(x,y);
+    uint8_t ipm = intraPredMode.get(x,y);
+
+    // sanitize values if IPM is uninitialized (because of earlier read error)
+    if (ipm > 34) {
+      ipm = 0;
+    }
+
+    return static_cast<enum IntraPredMode>(ipm);
   }
 
   enum IntraPredMode get_IntraPredMode_atIndex(int idx) const