ffmpeg

mirror of https://git.ffmpeg.org/ffmpeg.git synced 2026-04-19 00:50:23 +00:00

Author	SHA1	Message	Date
Marton Balint	9999b9a8b2	avfilter/af_amerge: fix possible crash with custom layouts The check if a native layout can be created from the sources was incomplete and casued a crash with custom layouts if the layout contained a native channel multiple times, as in this example command line: ffmpeg -lavfi "sine[a0];sine,pan=FL+FL[a1];[a0][a1]amerge[aout]" -map "[aout]" -t 1 -f framecrc - Signed-off-by: Marton Balint <cus@passwd.hu> (cherry picked from commit `e8b10a9b09`)	2025-12-07 21:17:07 +01:00
Kacper Michajłow	240c1b0eb7	avfilter/stack_internal: fix checkheaders test Signed-off-by: Kacper Michajłow <kasper93@gmail.com> (cherry picked from commit `1a1377c53d`)	2025-12-03 20:27:24 +01:00
Timo Rothenpieler	735acddb8a	all: apply linter fixes	2025-12-03 20:27:24 +01:00
Zhao Zhili	05e10ce5ac	avfilter/vf_drawtext: fix call GET_UTF8 with invalid argument For GET_UTF8(val, GET_BYTE, ERROR), val has type of uint32_t, GET_BYTE must return an unsigned integer, otherwise signed extension happened due to val= (GET_BYTE), and GET_UTF8 went to the error path. This bug incidentally cancelled the bug where hb_buffer_add_utf8 was being called with incorrect argument, allowing drawtext to function correctly on x86 and macOS ARM, which defined char as signed. However, on Linux and Android ARM environments, because char is unsigned by default, GET_UTF8 now returns the correct return, which unexpectedly revealed issue #20906. (cherry picked from commit `a5cc0e5c9e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-11-21 20:57:02 +01:00
Zhao Zhili	cf6842fd8a	avfilter/vf_drawtext: fix incorrect text length From the doc of HarfBuzz, what hb_buffer_add_utf8 needs is the number of bytes, not Unicode character: hb_buffer_add_utf8(buf, text, strlen(text), 0, strlen(text)); Fix issue #20906. (cherry picked from commit `9bc3c572ea`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-11-21 20:57:02 +01:00
Michael Niedermayer	7327a9ab19	avfilter/vf_drawtext: Account for bbox text seperator Fixes: out of array access no test case Found-by: Joshua Rogers <joshua@joshua.hu> with ZeroPath Reviewed-by: Joshua Rogers <joshua@joshua.hu> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ad956ff076`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-11-21 20:57:02 +01:00
Jiasheng Jiang	6250ed77a6	libavfilter/dnn/dnn_backend_tf: Remove redundant av_freep() to avoid double free Remove redundant av_freep() to avoid double free since task will be freed in dnn_free_model_tf() after the success of ff_queue_push_back(). Fixes: `af052f9066` ("lavfi/dnn: fix mem leak in TF backend error handle") Signed-off-by: Jiasheng Jiang <jiashengjiangcool@gmail.com> (cherry picked from commit `b8d5f65b9e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-08-14 02:55:52 +02:00
Muhammad Faiz	8577a6b2fe	avfilter/avf_showcqt: fix unbounded index when copying to fft_data When timeclamp and/or fps are low, j can be negative. Fix Ticket11640 (cherry picked from commit `35ea458354`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-08-14 02:55:49 +02:00
Jiasheng Jiang	00b5af29a4	libavfilter/af_firequalizer: Add check for av_malloc_array() Add check for the return value of av_malloc_array() to avoid potential NULL pointer dereference. Fixes: `d3be186ed1` ("avfilter/firequalizer: add dumpfile and dumpscale option") Signed-off-by: Jiasheng Jiang <jiashengjiangcool@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a25462482c`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-08-14 02:55:46 +02:00
James Almer	e2b20632b8	avfilter/buffersrc: check for valid sample rate A sample rate <= 0 is invalid. Fixes an assert in ffmpeg_enc.c that assumed a valid sample rate would be set. Fixes ticket #11385. Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit `1446e37d3d`)	2025-06-11 12:16:11 +02:00
Paul B Mahol	efedc1d1b6	avfilter/asrc_afirsrc: fix by one smaller allocation of buffer (cherry picked from commit `4adb93dff0`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:16:10 +02:00
Cosmin Stejerean	c104119c6b	avfilter/bwdif: account for chroma sub-sampling in min size calculation The current logic for detecting frames that are too small for the algorithm does not account for chroma sub-sampling, and so a sample where the luma plane is large enough, but the chroma planes are not will not be rejected. In that event, a heap overflow will occur. This change adjusts the logic to consider the chroma planes and makes the change to all three bwdif implementations. Fixes #10688 Signed-off-by: Cosmin Stejerean <cosmin@cosmin.at> Reviewed-by: Thomas Mundt <tmundt75@gmail.com> Signed-off-by: Philip Langdale <philipl@overt.org> (cherry picked from commit `737ede405b`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:16:10 +02:00
Paul B Mahol	dcf34f13f5	avfilter/af_afwtdn: fix crash with EOF handling (cherry picked from commit `b1942734c7`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:16:09 +02:00
Paul B Mahol	a4b6e37ad5	avfilter/vf_colorcorrect: fix memory leaks (cherry picked from commit `5f87a68cf7`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:16:09 +02:00
Zhao Zhili	a279a8620e	avfilter/vf_codecview: fix heap buffer overflow And improve the performance by a little bit. Signed-off-by: Zhao Zhili <zhilizhao@tencent.com> (cherry picked from commit `99debe5f82`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:16:09 +02:00
Michael Niedermayer	e5036fe010	avfilter/vf_v360: Fix NULL pointer use Fixes: applying zero offset to null pointer partly Fixes: verysmall.flv Found-by: Elias Myllymäki <elias.myllymaki04p@gmail.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `66e9888bf4`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:16:02 +02:00
Michael Niedermayer	43f64690ad	avfilter/af_pan: Fix sscanf() use Fixes: Memory Data Leak Found-by: Simcha Kosman <simcha.kosman@cyberark.com> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b5b6391d64`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:15:59 +02:00
Michael Niedermayer	a89a8548b1	avfilter/vf_grayworld: Use the correct pointer for av_log() Fixes: crash Found-by: Elias Myllymäki <elias.myllymaki04p@gmail.com> Reviewed-by: Alexander Strasser <eclipse7@gmx.net> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9ffa127aa6`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:15:59 +02:00
Michael Niedermayer	01010e2ca7	avfilter/vf_addroi: Add missing NULL termination to addroi_var_names[]() Fixes: out of array read Found-by: Elias Myllymäki <elias.myllymaki04p@gmail.com> Reviewed-by: Alexander Strasser <eclipse7@gmx.net> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b72de49295`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:15:59 +02:00
Michael Niedermayer	0a80dadb96	avfilter/vf_xfade: Compute w2, h2 with float Fixes: CID1458148 Result is not floating-point Fixes: CID1458149 Result is not floating-point Fixes: CID1458150 Result is not floating-point Fixes: CID1458151 Result is not floating-point Fixes: CID1458152 Result is not floating-point Fixes: CID1458154 Result is not floating-point Fixes: CID1458155 Result is not floating-point Fixes: CID1458156 Result is not floating-point Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `b98125e5a5`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:15:30 +02:00
Michael Niedermayer	f316f0309a	avfilter/vf_v360: Assert that vf was initialized Maybe helps: CID1504571 Uninitialized scalar variable Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `f802d65de0`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:15:29 +02:00
Michael Niedermayer	b4cd76b483	avfilter/vf_tonemap_opencl: Dereference after NULL check Fixes: CID1437472 Dereference before null check Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e5c0f56ca0`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:15:29 +02:00
Michael Niedermayer	3581e7ce1d	avfilter/af_surround: Check output format Fixes: CID1516994 Out-of-bounds access Fixes: CID1516996 Out-of-bounds access Fixes: CID1516999 Out-of-bounds access Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `22ee55a1da`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:15:28 +02:00
Michael Niedermayer	bd002dfc3d	avfilter/vf_xfade_opencl: Check ff_inlink_consume_frame() for failure Fixes: CID1458127 Unchecked return value Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `43b62b7e0c`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2025-06-11 12:15:28 +02:00
Paul B Mahol	b8fe1bc38e	avfilter/avfiltergraph: fix regression in picking channel layout Signed-off-by: James Almer <jamrial@gmail.com> (cherry picked from commit `1b3f4842c1`)	2025-05-22 19:41:51 -03:00
Marton Balint	a6a07eebdf	avfilter/f_loop: fix aloop activate logic The logic did not follow the documented behaviour and that caused skipping of some audio in the loop and in the leftover buffer. Example command line which should produce a smooth sine wave for the whole duration of the output: ffmpeg -f lavfi -i "sine=r=48000:f=480:d=4" -af "aloop=loop=4:start=48000:size=48000" out.wav Fixes ticket #11283. Signed-off-by: Marton Balint <cus@passwd.hu> (cherry picked from commit `fe18ed3f2a`)	2024-11-17 22:33:05 +01:00
Marton Balint	2b6be6ba90	avfilter/f_loop: fix length of aloop leftover buffer If the audio loop stops inside an audio frame, the leftover buffer contains the end of the frame, which is not looped. The length supposed to be the part which was not written to the loop buffer, so we need to drain exactly that number of bytes from the leftover buffer. Signed-off-by: Marton Balint <cus@passwd.hu> (cherry picked from commit `b33a594160`)	2024-11-17 22:33:02 +01:00
Michael Niedermayer	498bfba547	avfilter/vf_xfade: Check ff_inlink_consume_frame() for failure Fixes: CID1458043 Unchecked return value Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `73ca4e75eb`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:58 +02:00
Michael Niedermayer	90b99445fb	avfilter/vf_scale: Check ff_scale_adjust_dimensions() for failure Helps: CID1513722 Operands don't affect result Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `2a8fb3c2cc`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:52 +02:00
Michael Niedermayer	38c029131a	avfilter/scale_eval: Use 64bit, check values in ff_scale_adjust_dimensions() Found by reviewing CID1513722 Operands don't affect result Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ad9df8bcfe`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:52 +02:00
Michael Niedermayer	05ef164255	avfilter/vf_lut3d: Check av_scanf() Fixes: CID1604398 Unchecked return value Fixes: CID1604542 Unchecked return value Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ace2e25720`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:51 +02:00
Michael Niedermayer	d10954e620	avfilter/vf_elbg: Use unsigned for shifting into the top bit Fixes: part of CID1355110 Overflowed constant Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `2af95b9214`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:51 +02:00
Michael Niedermayer	f3a360a00d	avfilter/vf_deshake_opencl: Ensure that the first iteration initializes the best variables Fixes: CID1452759 Uninitialized scalar variable Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9385847af4`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:51 +02:00
Michael Niedermayer	0b5ef2198b	avfilter/vf_convolution_opencl: Assert that the filter name is one of the filters Helps with: CID1439572 Uninitialized pointer read Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `19a5a8997c`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:46 +02:00
Michael Niedermayer	02694abdaf	avfilter/vf_bm3d: Dont round MSE2SSE to an integer Fixes: CID1439581 Result is not floating-point Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `ec18ec9fc1`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:46 +02:00
Michael Niedermayer	f504e2e9f5	avfilter/af_aderivative: Free out on error Fixes: CID1197065 Resource leak Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `382e9e79f3`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:33 +02:00
Michael Niedermayer	ac8ac10e33	avfilter/af_afir: Assert format Maybe helps: CID1516805 Uninitialized scalar variable Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `a5c815f937`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:32 +02:00
Michael Niedermayer	40b801870d	avfilter/af_afftdn: Assert format Maybe helps: CID1515514 Uninitialized scalar variable Maybe helps: CID1515517 Uninitialized scalar variable Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `8f9a6c4ea8`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:32 +02:00
Michael Niedermayer	c773ce8435	avfilter/af_pan: check nb_output_channels before use Fixes: CID1500281 Out-of-bounds write Fixes: CID1500331 Out-of-bounds write Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `5fe8bf4aa5`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:31 +02:00
Michael Niedermayer	bdd1a93e4b	avfilter/af_mcompand: compute half frequency in double Fixes: CID1422217 Result is not floating-point Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `2d0d502ff1`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:31 +02:00
Michael Niedermayer	4d7d183ccb	avfilter/af_channelsplit: Assert that av_channel_layout_channel_from_index() succeeds Maybe Helps: CID1503077 Bad bit shift operation Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `cef720ab42`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:30 +02:00
Michael Niedermayer	bea691ffc1	avfilter/af_aresample: Cleanup on av_channel_layout_copy() failure Fixes: CID1503078 Resource leak Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `7a0ea15c7a`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:30 +02:00
Michael Niedermayer	3666a36472	avfilter/vf_avgblur: Check plane instead of AVFrame Fixes: CID1551694 Use after free (false positive based on assuming that out == in and one is freed and one used) Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `c296d4fdec`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:29 +02:00
Michael Niedermayer	371c42dd81	avfilter/drawutils: Fix depthb computation Fixes: CID1496940 Logically dead code Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `34f821e448`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:29 +02:00
Michael Niedermayer	96a63346ee	avfilter/avf_showcwt: Check av_parse_video_rate() for failure Fixes: CID1539147 Unused value Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `aab0c344c5`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:29 +02:00
Michael Niedermayer	7e634b9731	avfilter/vf_rotate: Check ff_draw_init2() return value Fixes: NULL pointer dereference Fixes: 3_343 Found-by: De3mond Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `9c9f095e30`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-07-24 16:52:20 +02:00
Michael Niedermayer	d92ef4f846	avfilter/vf_thumbnail_cuda: Set ret before checking it Fixes: CID1418336 Logically dead code Sponsored-by: Sovereign Tech Fund Reviewed-by: Timo Rothenpieler <timo@rothenpieler.org> Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `02301017d2`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-05-25 00:31:07 +02:00
Michael Niedermayer	057b8d65e3	avfilter/signature_lookup: Dont copy uninitialized stuff around Fixes: CID1403238 Uninitialized pointer read Fixes: CID1403239 Uninitialized pointer read Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `e7174e66ac`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-05-25 00:31:07 +02:00
Michael Niedermayer	572985605f	avfilter/signature_lookup: Fix 2 differences to the refernce SW Fixes: CID1403227 Division or modulo by float zero Sponsored-by: Sovereign Tech Fund Signed-off-by: Michael Niedermayer <michael@niedermayer.cc> (cherry picked from commit `25cb66369e`) Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>	2024-05-25 00:31:06 +02:00
Paul B Mahol	1606aab99b	avfilter/avfilter: fix OOM case for default activate Fixes OOM when caller keeps adding frames into filtergraph that reached EOF by other means, for example EOF is signalled by other filter in filtergraph or by buffersink. (cherry picked from commit `d9e41ead82`)	2024-05-01 15:32:40 -03:00

1 2 3 4 5 ...

11291 commits