Skip to content

Integer overflow errors detected via Libfuzzer

Numerous integer overflow errors detected via Libfuzzer & UndefinedBehaviorSanitizer.

./dav1d_fuzzer crash-0cf.txt

crash-0cf.txt

Running: crash-0cf.txt ../../src/dav1d/src/msac.c:44:25: runtime error: unsigned integer overflow: 64 - 18446744073709551601 cannot be represented in type 'unsigned long' SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior ../../src/dav1d/src/msac.c:44:25 in

../../src/dav1d/src/msac.c:51:26: runtime error: unsigned integer overflow: 64 - 18446744073709551615 cannot be represented in type 'unsigned long' SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior ../../src/dav1d/src/msac.c:51:26 in

../../src/dav1d/src/msac.h:94:13: runtime error: unsigned integer overflow: 0 - 1 cannot be represented in type 'unsigned int' SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior ../../src/dav1d/src/msac.h:94:13 in

../../src/dav1d/src/recon_tmpl.c:187:11: runtime error: unsigned integer overflow: 289360691352306692 * 72340172838076673 cannot be represented in type 'unsigned long' SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior ../../src/dav1d/src/recon_tmpl.c:187:11 in

../../src/dav1d/src/recon_tmpl.c:178:11: runtime error: unsigned integer overflow: 144680345676153346 * 72340172838076673 cannot be represented in type 'unsigned long' SUMMARY: UndefinedBehaviorSanitizer: undefined-behavior ../../src/dav1d/src/recon_tmpl.c:178:11 in

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information

VideoLAN code repository instance