oss-fuzz: index out of bounds in dav1d_recon_b_inter_8bpc() src/recon_tmpl.c
Reproduced with commit 48a7486a
Steps to reproduce:
- build dav1d with UndefinedBehaviorSanitizer (-fsanitize=undefined)
- replay testcase with
./dav1d_fuzzer_mt clusterfuzz-testcase-dav1d_fuzzer_mt-5688109887389696
clusterfuzz-testcase-dav1d_fuzzer_mt-5688109887389696
src/recon_tmpl.c:1205:21: runtime error: index 9 out of bounds for type 'const uint8_t [4][4]'
#0 0x497141 in dav1d_recon_b_inter_8bpc src/recon_tmpl.c:1205:21
#1 0x4425aa in decode_b src/decode.c:736:17
#2 0x43ae9d in decode_sb src/decode.c:2043:17
#3 0x43b4ed in decode_sb src/decode.c:1976:21
#4 0x438d5d in dav1d_decode_tile_sbrow src/decode.c:2238:17
#5 0x431d8e in dav1d_tile_task src/thread_task.c:89:29