avcodec/apedec: Fixes integer overflow of res+*data in do_apply_filter()

Fixes: signed integer overflow: 7400 + 2147482786 cannot be represented in type 'int' Fixes: 18405/clusterfuzz-testcase-minimized-ffmpeg_AV_CODEC_ID_APE_fuzzer-5708834760294400 Found-by: continuous fuzzing process https://github.com/google/oss-fuzz/tree/master/projects/ffmpeg Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
author: Michael Niedermayer <michael@niedermayer.cc> 2019-10-29 18:30:07 +0100
committer: Michael Niedermayer <michael@niedermayer.cc> 2019-11-20 15:50:15 +0100
commit: dc3f327e7403a34c88a900f0b8de55b4afd7cf6c (patch)
tree: 9fa56d1d6c8391f026372f685e20d5e7f7e041f8 /libavcodec/apedec.c
parent: b6abdb1faf810e93189797a61af124fcd05269d4 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/libavcodec/apedec.c b/libavcodec/apedec.c
index cfcf9a06c1..2b5bd759f5 100644
--- a/libavcodec/apedec.c
+++ b/libavcodec/apedec.c
@@ -1272,7 +1272,7 @@ static void do_apply_filter(APEContext *ctx, int version, APEFilter *f,
                                                      f->adaptcoeffs - order,
                                                      order, APESIGN(*data));
         res = (int)(res + (1U << (fracbits - 1))) >> fracbits;
-        res += *data;
+        res += (unsigned)*data;
         *data++ = res;
 
         /* Update the output history */
author	Michael Niedermayer <michael@niedermayer.cc>	2019-10-29 18:30:07 +0100
committer	Michael Niedermayer <michael@niedermayer.cc>	2019-11-20 15:50:15 +0100
commit	dc3f327e7403a34c88a900f0b8de55b4afd7cf6c (patch)
tree	9fa56d1d6c8391f026372f685e20d5e7f7e041f8 /libavcodec/apedec.c
parent	b6abdb1faf810e93189797a61af124fcd05269d4 (diff)