ref: 7e693a1d26779acf8e21378a898c25ab35f2bcac
parent: e664029a462d949ff6cfe9846016cfe61b07b6e9
author: Janne Grunau <[email protected]>
date: Thu Oct 4 20:10:06 EDT 2018
fuzzer: fix ivf parsing
--- a/tests/libfuzzer/dav1d_fuzzer.c
+++ b/tests/libfuzzer/dav1d_fuzzer.c
@@ -54,11 +54,11 @@
err = dav1d_open(&ctx, &settings);
if (err < 0) goto end;
- while (ptr <= data + size - 4) {
+ while (ptr <= data + size - 12) {
Dav1dData buf;
size_t frame_size = r32le(ptr);
- ptr += 4;
+ ptr += 12;
if (frame_size > size || ptr > data + size - frame_size)
break;