[FFmpeg-devel] Security issues?
Wed Sep 23 11:33:33 CEST 2009
On Tue, Sep 22, 2009 at 08:09:08PM +0200, Michael Niedermayer wrote:
> lars has mailed me the following 2 links
next is for mov:
this probably isnt security relevant but still should be fixed
issue is that 32bits are read into an (signed) int and thus one can
end with a negative time_scale, chromes patch looks wrong
changing time_scale to unsigned seems the solution at first but its
assigned to sample_rate and time_base which themselfs are signed ...
Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB
Thouse who are best at talking, realize last or never when they are wrong.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Size: 189 bytes
Desc: Digital signature
More information about the ffmpeg-devel