Closed Bug 1193826 Opened 6 years ago Closed 6 years ago

Openh264: heap-buffer-overflow [@WelsEnc::CWelsPreProcess::DetectSceneChangeScreen]

Categories

(External Software Affecting Firefox :: OpenH264, defect)

defect
Not set
critical

Tracking

(Not tracked)

RESOLVED FIXED

People

(Reporter: tsmith, Unassigned)

References

(Blocks 1 open bug)

Details

(Keywords: csectype-bounds, sec-high, testcase)

Attachments

(3 files)

Attached file test_case.cfg
This was found on trunk.

Steps to reproduce:
Run following command with attached files.
$ h264enc test_case.cfg -bf /dev/null -org dummy.yuv
Attached video dummy.yuv
Attached file call_stack.txt
Depends on: 1170319
This also affects v1.4-Firefox38
Keywords: sec-high
Group: core-security → media-core-security
Verified with https://github.com/cisco/openh264/commit/5373b8a3aad243245c56e964efa8380ab1fcc44d
Status: NEW → RESOLVED
Closed: 6 years ago
Resolution: --- → FIXED
Group: media-core-security → core-security-release
Group: core-security-release
You need to log in before you can comment on or make changes to this bug.