[FFmpeg-devel] [PATCH] libavcodec/prores_raw: Fix heap-buffer-overflow in decode_frame (PR #21085)

PR #21085 opened by oliverchang URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/21085 Patch URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/21085.patch Fixes a heap-buffer-overflow in `decode_frame` where `header_len` read from the bitstream was not validated against the remaining bytes in the i

[FFmpeg-devel] [PATCH] avcodec/aacdec: Fix heap-use-after-free in USAC decoding (PR #21095)

PR #21095 opened by oliverchang URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/21095 Patch URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/21095.patch A heap-use-after-free vulnerability was identified in `libavcodec/aac/aacdec.c`. When `che_configure` frees a `ChannelElement` (`ac->che[type][

[FFmpeg-devel] [PATCH] avformat/iamf_parse: Fix heap-buffer-overflow (PR #21107)

PR #21107 opened by oliverchang URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/21107 Patch URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/21107.patch The ASAN heap-buffer-overflow in `scalable_channel_layout_config` at `libavformat/iamf_parse.c:435` was caused by an unchecked assumption that t

[FFmpeg-devel] [PATCH] avcodec/dpx: Fix heap-buffer-overflow in 16-bit decoding (PR #21106)

PR #21106 opened by oliverchang URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/21106 Patch URL: https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/21106.patch Fixes a heap-buffer-overflow in `libavcodec/dpx.c` triggered by a stale `unpadded_10bit` flag in the `DPXDecContext`. This flag, set for 10-bit