The restore_tqb_pixels function in hevc_filter.c in libavcodec, as used in libbpg 0.9.8 and other products, has an integer overflow that leads to a heap-based buffer overflow and remote code execution.Referenceshttps://drive.google.com/open?id=1J3hTt8XHz7u7QDSNYxEuwFZTO6Baggl0https://github.com/ebel34/bpg-web-encoder/issues/2
