On 14.12.2015 22:37, Luca Barbato wrote: > On 13/12/15 23:37, Andreas Cadhalpun wrote: >> This macro unconditionally used out[-1], which causes an out of bounds >> read, if out is the very beginning of the buffer. >> >> Signed-off-by: Andreas Cadhalpun <[email protected]> >> --- >> libavcodec/exr.c | 10 +++++----- >> 1 file changed, 5 insertions(+), 5 deletions(-) >> > > When is it happening?
When get_code is called for the first time, out is the beginning of the buffer. If then the 'po == rlc' branch is used, 's = out[-1]' is invalid. Best regards, Andreas _______________________________________________ ffmpeg-devel mailing list [email protected] http://ffmpeg.org/mailman/listinfo/ffmpeg-devel
