[FFmpeg-trac] #8673(avformat:open): UAF while parsing m3u8 files ( in av_probe_input_format3)

FFmpeg trac at avcodec.org
Fri May 15 19:44:28 EEST 2020


#8673: UAF while parsing m3u8 files ( in av_probe_input_format3)
------------------------------------+-------------------------------------
             Reporter:  assafsion   |                    Owner:  assafsion
                 Type:  defect      |                   Status:  open
             Priority:  important   |                Component:  avformat
              Version:  git-master  |               Resolution:
             Keywords:              |               Blocked By:
             Blocking:              |  Reproduced by developer:  0
Analyzed by developer:  0           |
------------------------------------+-------------------------------------

Comment (by assafsion):

 Make sure to compile with fsanitize=address.
 My configuration:
 --cc=clang --extra-cflags='-O2 -g3 -fsanitize=address -fno-omit-frame-
 pointer -Wno-error' --extra-ldflags='-O2 -g3 -fsanitize=address -fno-omit-
 frame-pointer -Wno-error' --enable-debug

 My command line is:
 ./ffmpeg -i input_file

 Make sure you don`t have a file named au_to0.ts, It suppose to fail while
 trying to open it.

 I compiled with various compilers and this specific input file with
 clang6.0 and ran the binary in Ubuntu 18.04.

--
Ticket URL: <https://trac.ffmpeg.org/ticket/8673#comment:3>
FFmpeg <https://ffmpeg.org>
FFmpeg issue tracker


More information about the FFmpeg-trac mailing list