[vlc-devel] [patch] i420_rgb: buffer overflow

Francois Cartegnie fcvlcdev at free.fr
Tue Jan 22 20:52:46 CET 2019

Le 22/01/2019 à 18:44, jnqnfe at gmail.com a écrit :
> patch attached
> Incorrect pointer offset calculation in SSE2 (non-assembly version)
> RGB15 unpacking.
> Could, I believe, allow almost 128 bytes to be written past the end of
> the end of the buffer on last loop iteration.

Each picture is stride aligned.
That's not unusual to overwrite past visible_width by less than 16 in
assembly for efficiency.

visible_width (w) < width (stride)

Francois Cartegnie
VideoLAN - VLC Developer

More information about the vlc-devel mailing list