[MPlayer-users] Seccomp sandbox

wbrana wbrana at gmail.com
Tue Feb 12 19:41:35 CET 2013


> If you know of a (valid or invalid) sample that
> crashes MPlayer (I would say without using the
> binary decoders), please provide it.
I don't have such sample, but FFMpeg had vulnerabilities, which could
allow execution of arbitrary code.
Seccomp sandbox would protect system calls against attacker's code if
properly implemented -
demuxers and codecs have to run in background thread to allow
different seccomp filters for different threads (stages of playback).

http://www.h-online.com/open/news/item/Microsoft-and-Secunia-warn-of-FFMpeg-vulnerabilities-1732963.html


More information about the MPlayer-users mailing list