[FFmpeg-devel] Security issues?

Robert Swain robert.swain
Wed Sep 23 10:44:34 CEST 2009


Hey,

2009/9/23 Carl Eugen Hoyos <cehoyos at ag.or.at>:
> Michael Niedermayer <michaelni <at> gmx.at> writes:
>
>>
>> On Tue, Sep 22, 2009 at 08:09:08PM +0200, Michael Niedermayer wrote:
>> > Hi
>> >
>> > lars has mailed me the following 2 links
>> >
> http://www.heise.de/newsticker/Sicherheitsluecken-in-VLC-und-FFmpeg--/meldung/145655
>> > http://secunia.com/advisories/36805/
>>
>> infinite loop in aac.c
>> chrome patch:
>>
> http://src.chromium.org/viewvc/chrome/trunk/deps/third_party/ffmpeg/patches/to_upstream/42_aac_zero_bands.patch?revision=25254&view=markup
>>
>> aac maintainer please check & apply
>
> This is not on roundup because I was unable to reproduce it with current svn.

I can't reproduce with trunk either.

Regards,
Rob



More information about the ffmpeg-devel mailing list