[FFmpeg-devel] [PATCH] avformat/hls: Fix DoS due to infinite loop
Michael Niedermayer
michael at niedermayer.cc
Sun Aug 27 20:16:03 EEST 2017
On Sat, Aug 26, 2017 at 01:26:58AM +0200, Michael Niedermayer wrote:
> Fixes: loop.m3u
>
> The default max iteration count of 1000 is arbitrary and ideas for a better solution are welcome
>
> Found-by: Xiaohei and Wangchu from Alibaba Security Team
> Signed-off-by: Michael Niedermayer <michael at niedermayer.cc>
> ---
> doc/demuxers.texi | 18 ++++++++++++++++++
> libavformat/hls.c | 7 +++++++
> 2 files changed, 25 insertions(+)
applied
[...]
--
Michael GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB
Let us carefully observe those good qualities wherein our enemies excel us
and endeavor to excel them, by avoiding what is faulty, and imitating what
is excellent in them. -- Plutarch
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: Digital signature
URL: <http://ffmpeg.org/pipermail/ffmpeg-devel/attachments/20170827/b5c14731/attachment.sig>
More information about the ffmpeg-devel
mailing list