angler-fishThe Vulnerability History Project

avcodec/mpeg4videodec: Check idx in mpeg4_decode_studio_block()

      Fixes: Out of array access
Fixes: 13500/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_MPEG4_fuzzer-5769760178962432

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Reviewed-by: Kieran Kunhya <kierank@obe.tv>
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
by Neal the Discus 2019-03-10 00:40:59 UTC
commit d227ed5d598340e719eff7156b1aa0a4469e9a6a
FFmpeg Fix MPEG-4 Studio Decoding Crash CVE-2019-11339
libavcodec/mpeg4videodec.c
-6
expand_less