Description of the bug:
NULL Pointer Dereference is triggered when processing a crafted hevc file, which leads to a crash.
This can be used for denial of service attacks.
Steps to reproduce the bug:
Compile with Address Sanitizer (ASan) :
./hdrcopy ./742a99d46dbc43328cc37e580d67578484ba8ae1
Tested version: libde265 v1.0.11
Description of the bug: NULL Pointer Dereference is triggered when processing a crafted hevc file, which leads to a crash. This can be used for denial of service attacks.
Steps to reproduce the bug: Compile with Address Sanitizer (ASan) : ./hdrcopy ./742a99d46dbc43328cc37e580d67578484ba8ae1
Address Sanitizer log:
Please check the attached POC.
742a99d46dbc43328cc37e580d67578484ba8ae1.zip