Closed Bug 1192947 Opened 6 years ago Closed 6 years ago

OpenH264: crash [@WelsDec::WelsReorderRefList]

Categories

(External Software Affecting Firefox :: OpenH264, defect)

defect
Not set
critical

Tracking

(Not tracked)

RESOLVED FIXED

People

(Reporter: tsmith, Unassigned)

References

(Blocks 1 open bug)

Details

(4 keywords)

Attachments

(2 files, 1 obsolete file)

Attached file call_stack.txt (obsolete) —
May be related to bug 1192929
Attached file test_case.264
What code is this being reported against?  1.4 or trunk?  It may not matter, but what platform?
(In reply to Randell Jesup [:jesup] from comment #2)
> What code is this being reported against?  1.4 or trunk?  It may not matter,
> but what platform?

I should have updated this one as well. Again found in trunk. My intention is to prevent these issues from creeping in to our next update.
Depends on: 1170319
Not sure how to rate this given the GMP sandbox. Are we comfortable with that as a mitigation? compromising on sec-high for now, we need this fixed.
Keywords: sec-high
Attached file call_stack.txt
Attachment #8645839 - Attachment is obsolete: true
It is caused by the recently modification and we have fixed it in latest code, please help to check it.
(In reply to Tyson Smith [:tsmith] from comment #7)
> Verified with
> https://github.com/cisco/openh264/commit/
> 8a96d06fa2fded2ac7f7c2b02942347fe8fc6d45
Sorry that should be https://github.com/cisco/openh264/commit/195dbdd5bdfefdf5c7ede511d1c088da493b559e
Group: core-security → media-core-security
Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → FIXED
Group: media-core-security → core-security-release
Group: core-security-release
You need to log in before you can comment on or make changes to this bug.