avcodec/h264_slice: Fix overflow in recovery_frame computation
authorMichael Niedermayer <michael@niedermayer.cc>
Fri, 8 Jun 2018 17:07:22 +0000 (19:07 +0200)
committerMichael Niedermayer <michael@niedermayer.cc>
Sun, 17 Jun 2018 23:16:04 +0000 (01:16 +0200)
commit78fe6f7c32ddca273587529ab3c517c39f6dc0d6
treee186531c83d04b354158384b27d03964f0dc12c2
parent3be0549029b0bc770107058cad496f0ee78268ee
avcodec/h264_slice: Fix overflow in recovery_frame computation

Fixes: signed integer overflow: 15 + 2147483646 cannot be represented in type 'int'
Fixes: 8381/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_H264_fuzzer-6225533137321984

Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
(cherry picked from commit 8c20ea8ee0f3f0b27aca0204c6dfaa4ac137e34e)
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
libavcodec/h264_sei.c