Description of the bug:
NULL Pointer Dereference is triggered when processing a crafted hevc file, which leads to a crash.
This can be used for denial of service attacks.
Steps to reproduce the bug:
Compile with Address Sanitizer (ASan) :
./hdrcopy ./874f14058752479b6d03a72ce78664b74914ad99
Tested version: libde265 v1.0.11
Description of the bug: NULL Pointer Dereference is triggered when processing a crafted hevc file, which leads to a crash. This can be used for denial of service attacks.
Steps to reproduce the bug: Compile with Address Sanitizer (ASan) : ./hdrcopy ./874f14058752479b6d03a72ce78664b74914ad99
Address Sanitizer log:
Please check the attached POC.
874f14058752479b6d03a72ce78664b74914ad99.zip