avformat/utils: Extend overflow check in dts wrap in compute_pkt_fields()

Fixes: signed integer overflow: -9223372032574480351 - 4294967296 cannot be represented in type 'long long' Fixes: 30022/clusterfuzz-testcase-minimized-ffmpeg_dem_KUX_fuzzer-5568610275819520 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
author: Michael Niedermayer <michael@niedermayer.cc> 2021-02-02 17:29:23 +0100
committer: Michael Niedermayer <michael@niedermayer.cc> 2021-03-31 23:09:35 +0200
commit: b37ff29e0e093b15585e9fb44bbd82bdf14b5230 (patch)
tree: 246ef6755c22b618c968a8119784a7dc07474603
parent: 1cf96ce269364e3c2b4ec2097f121ad42b336839 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/libavformat/utils.c b/libavformat/utils.c
index dffc259ed8..92695c3f2b 100644
--- a/libavformat/utils.c
+++ b/libavformat/utils.c
@@ -1275,7 +1275,7 @@ static void compute_pkt_fields(AVFormatContext *s, AVStream *st,
         presentation_delayed = 1;
 
     if (pkt->pts != AV_NOPTS_VALUE && pkt->dts != AV_NOPTS_VALUE &&
-        st->pts_wrap_bits < 63 && pkt->dts > INT64_MIN + (1LL << (st->pts_wrap_bits - 1)) &&
+        st->pts_wrap_bits < 63 && pkt->dts > INT64_MIN + (1LL << st->pts_wrap_bits) &&
         pkt->dts - (1LL << (st->pts_wrap_bits - 1)) > pkt->pts) {
         if (is_relative(st->cur_dts) || pkt->dts - (1LL<<(st->pts_wrap_bits - 1)) > st->cur_dts) {
             pkt->dts -= 1LL << st->pts_wrap_bits;
author	Michael Niedermayer <michael@niedermayer.cc>	2021-02-02 17:29:23 +0100
committer	Michael Niedermayer <michael@niedermayer.cc>	2021-03-31 23:09:35 +0200
commit	b37ff29e0e093b15585e9fb44bbd82bdf14b5230 (patch)
tree	246ef6755c22b618c968a8119784a7dc07474603
parent	1cf96ce269364e3c2b4ec2097f121ad42b336839 (diff)