Overview

File ffmpeg-CVE-2022-1475.patch of Package ffmpeg.39878

commit 757da974b21833529cc41bdcc9684c29660cdfa8
Author: Michael Niedermayer <michael@niedermayer.cc>
Date:   Sun Feb 27 14:43:04 2022 +0100

    avcodec/g729_parser: Check channels
    
    Fixes: signed integer overflow: 10 * 808464428 cannot be represented in type 'int'
    Fixes: assertion failure
    Fixes: ticket9651
    
    Reviewed-by: Paul B Mahol <onemda@gmail.com>
    Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>

--- a/libavcodec/g729_parser.c
+++ b/libavcodec/g729_parser.c
@@ -48,6 +48,9 @@
         av_assert1(avctx->codec_id == AV_CODEC_ID_G729);
         /* FIXME: replace this heuristic block_size with more precise estimate */
         s->block_size = (avctx->bit_rate < 8000) ? G729D_6K4_BLOCK_SIZE : G729_8K_BLOCK_SIZE;
+        // channels > 2 is invalid, we pass the packet on unchanged
+        if (avctx->channels > 2)
+            s->block_size = 0;
         s->duration   = avctx->frame_size;
     }
openSUSE Build Service is sponsored by
Places