From: jeanlf <jeanlf@gpac.io>
Date: Mon, 30 Aug 2021 15:09:02 +0000 (+0200)
Subject: [PATCH] fixed #1898
X-Git-Tag: archive/raspbian/1.0.1+dfsg1-4+rpi1+deb11u3^2~87
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=ce14d00c5712f93a0135bd1c6b51b483c1fc11cd;p=gpac.git

[PATCH] fixed #1898


Gbp-Pq: Name CVE-2021-40564.patch
---

diff --git a/src/media_tools/av_parsers.c b/src/media_tools/av_parsers.c
index 6fb3d6f..a0330c6 100644
--- a/src/media_tools/av_parsers.c
+++ b/src/media_tools/av_parsers.c
@@ -5559,7 +5559,7 @@ static s32 avc_parse_slice(GF_BitStream *bs, AVCState *avc, Bool svc_idr_flag, A
 	if (si->slice_type > 9) return -1;
 
 	pps_id = gf_bs_get_ue(bs);
-	if (pps_id > 255) return -1;
+	if ((pps_id < 0) || (pps_id > 255)) return -1;
 	si->pps = &avc->pps[pps_id];
 	if (!si->pps->slice_group_count) return -2;
 	si->sps = &avc->sps[si->pps->sps_id];