Closed
Bug 1229205
Opened 9 years ago
Closed 8 years ago
FFMPEG: signed integer overflow in [@update_initial_timestamps]
Categories
(Core :: Audio/Video: Playback, defect)
Core
Audio/Video: Playback
Tracking
()
RESOLVED
FIXED
Tracking | Status | |
---|---|---|
firefox45 | --- | affected |
People
(Reporter: tsmith, Unassigned)
References
Details
(Keywords: csectype-intoverflow, sec-other, testcase)
Attachments
(2 files)
Found fuzzing ffmpeg commit: 6b978dadc654906130de46a8b83b6f67f90d3e17 This is an Undefined behavior sanitizer (UBSan) run time error. libavformat/utils.c:922:35: runtime error: signed integer overflow: -2450238577049583619 - 9223090561878065151 cannot be represented in type 'long long' I am marking it as security as precaution. Feel free to open it if this is not necessary.
Reporter | ||
Comment 1•9 years ago
|
||
Comment 2•9 years ago
|
||
not security relevant, and very likely no bug at the binary level just undefined in the C source. Will push a fix to ffmpeg
Reporter | ||
Updated•9 years ago
|
Group: media-core-security
Comment 3•8 years ago
|
||
Should be fixed in upstream commit cafb19560401612a07760d230a50d9c1d0564daf. Can you verify please, Tyson?
Status: NEW → RESOLVED
Closed: 8 years ago
Flags: needinfo?(twsmith)
Resolution: --- → FIXED
You need to log in
before you can comment on or make changes to this bug.
Description
•