[Bug 774834] gst-plugins-good / flic decoder: Buffer overflow in flx_decode_delta_fli
GStreamer (GNOME Bugzilla)
bugzilla at gnome.org
Tue Nov 22 11:44:31 UTC 2016
https://bugzilla.gnome.org/show_bug.cgi?id=774834
Matthew Waters (ystreet00) <ystreet00 at gmail.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
CC| |ystreet00 at gmail.com
Resolution|--- |FIXED
--- Comment #1 from Matthew Waters (ystreet00) <ystreet00 at gmail.com> ---
commit bf43f44fcfada5ec4a3ce60cb374340486fe9fac
Author: Matthew Waters <matthew at centricular.com>
Date: Tue Nov 22 19:05:00 2016 +1100
flxdec: add some write bounds checking
Without checking the bounds of the frame we are writing into, we can
write off the end of the destination buffer.
https://scarybeastsecurity.blogspot.dk/2016/11/0day-exploit-advancing-exploitation.html
https://bugzilla.gnome.org/show_bug.cgi?id=774834
and 1.10 2e203a79b7d9af4029307c1a845b3c148d5f5e62
--
You are receiving this mail because:
You are the QA Contact for the bug.
You are the assignee for the bug.
More information about the gstreamer-bugs
mailing list