[FFmpeg-devel] Security issues?

Alex Converse alex.converse
Wed Sep 23 17:05:50 CEST 2009


On Wed, Sep 23, 2009 at 3:38 AM, Michael Niedermayer <michaelni at gmx.at> wrote:
> On Tue, Sep 22, 2009 at 08:09:08PM +0200, Michael Niedermayer wrote:
>> Hi
>>
>> lars has mailed me the following 2 links
>> http://www.heise.de/newsticker/Sicherheitsluecken-in-VLC-und-FFmpeg--/meldung/145655
>> http://secunia.com/advisories/36805/
>
> infinite loop in aac.c
> chrome patch:
> http://src.chromium.org/viewvc/chrome/trunk/deps/third_party/ffmpeg/patches/to_upstream/42_aac_zero_bands.patch?revision=25254&view=markup
>
> aac maintainer please check & apply
>

It infinite loops because one of their their other patches makes
get_bits return zero when it runs out of buffer.



More information about the ffmpeg-devel mailing list