[FFmpeg-trac] #4357(avcodec:new): Potential DoS in mpeg4video parser
FFmpeg
trac at avcodec.org
Sun May 31 03:05:53 CEST 2015
#4357: Potential DoS in mpeg4video parser
------------------------------------+-----------------------------------
Reporter: jmaggard10 | Owner:
Type: defect | Status: new
Priority: normal | Component: avcodec
Version: git-master | Resolution:
Keywords: | Blocked By:
Blocking: | Reproduced by developer: 0
Analyzed by developer: 0 |
------------------------------------+-----------------------------------
Comment (by michael):
You can limit the maximum for a single allocation by using -max_alloc X,
most platforms also provide a way to limit the sum of all allocations of a
process.
Its certainly possibly to limit the amount of allocated memory for a file
of just zeros and maybe we should but, one can always create a file with a
arbitrary large or long valid video which would need arbitrary amounts of
memory to decode, thus i think theres not much better than a user
specified limit that can be done here.
--
Ticket URL: <https://trac.ffmpeg.org/ticket/4357#comment:1>
FFmpeg <https://ffmpeg.org>
FFmpeg issue tracker
More information about the FFmpeg-trac
mailing list