HEVC file causes DoS of HEVC playback
Categories
(Core :: Audio/Video: Playback, defect, P2)
Tracking
()
Tracking | Status | |
---|---|---|
firefox-esr115 | --- | unaffected |
firefox119 | --- | disabled |
firefox120 | --- | disabled |
firefox121 | --- | affected |
People
(Reporter: tsmith, Assigned: alwu)
References
(Blocks 2 open bugs)
Details
(Keywords: csectype-dos, testcase, Whiteboard: [fuzzblocker])
Attachments
(1 file)
3.77 KB,
video/mp4
|
Details |
Found with m-c 20231016-f64b858317d1 (--enable-debug --enable-fuzzing)
Attempting to play the test case hangs attempting to load(?). From this point on it is not possible to play HEVC files without relaunching the browser.
Assignee | ||
Comment 1•1 year ago
|
||
This test file seems crashing the whole GPU process, I am still not sure if it should be a security issue. But for safe, making this bug as a sec bug for now.
Updated•1 year ago
|
Comment 2•1 year ago
|
||
This is nightly-only and surely it will be fixed before we ship. if we had to rate it we'd call it sec-low if anything, but we don't need to hide it.
Updated•11 months ago
|
Comment 3•11 months ago
|
||
The severity field is not set for this bug.
:jimm, could you have a look please?
For more information, please visit BugBot documentation.
Updated•11 months ago
|
Comment 4•11 months ago
|
||
The severity field is not set for this bug.
:jimm, could you have a look please?
For more information, please visit BugBot documentation.
Assignee | ||
Updated•11 months ago
|
Comment 5•11 months ago
|
||
This bug prevents fuzzing from making progress; however, it has low severity. It is important for fuzz blocker bugs to be addressed in a timely manner (see here why?).
:alwu, could you consider increasing the severity?
For more information, please visit BugBot documentation.
Updated•8 months ago
|
Description
•