Skip to content

Commit

Permalink
dav1d and fuzzer access global security limits
Browse files Browse the repository at this point in the history
  • Loading branch information
@farindk
farindk committed Oct 7, 2024
1 parent b2e6c93 commit 8657d35
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 2 deletions.
2 changes: 1 addition & 1 deletion fuzzing/box_fuzzer.cc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -31,7 +31,7 @@ extern "C" int LLVMFuzzerTestOneInput(const uint8_t* data, size_t size)
BitstreamRange range(reader, size);
for (;;) {
std::shared_ptr<Box> box;
Error error = Box::read(range, &box);
Error error = Box::read(range, &box, heif_get_global_security_limits());
if (error != Error::Ok || range.error()) {
break;
}
Expand Down
2 changes: 1 addition & 1 deletion libheif/plugins/decoder_dav1d.cc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -90,7 +90,7 @@ struct heif_error dav1d_new_decoder(void** dec)

dav1d_default_settings(&decoder->settings);

decoder->settings.frame_size_limit = MAX_IMAGE_SIZE;
decoder->settings.frame_size_limit = heif_get_global_security_limits()->max_image_size_pixels;
decoder->settings.all_layers = 0;

if (dav1d_open(&decoder->context, &decoder->settings) != 0) {
Expand Down

0 comments on commit 8657d35

Please sign in to comment.