Closed
Bug 737663
Opened 12 years ago
Closed 12 years ago
SecReview: Fluendo MP3 decoder
Categories
(mozilla.org :: Security Assurance: Review Request, task)
mozilla.org
Security Assurance: Review Request
Tracking
(Not tracked)
RESOLVED
FIXED
People
(Reporter: rillian, Assigned: posidron)
References
Details
(Whiteboard: [completed secreview][score:0::Low])
We're considering shipping fluendo's licensed mp3 decoder with firefox. I'd like to have a security review so we know safe the codebase would be for our users. Source is available from https://core.fluendo.com/gstreamer/svn/trunk/gst-fluendo-mp3/
this will need to be fuzzed
Assignee: nobody → cdiehl
Whiteboard: [pending secreview] → [secr:cdiehl][fuzzing needed]
|
Reporter | |
Comment 2•12 years ago
|
||
fuzzing is good!
|
Assignee | |
Comment 3•12 years ago
|
||
Runs.
|
||
Updated•12 years ago
|
Status: NEW → ASSIGNED
|
|
Assignee | |
Comment 4•12 years ago
|
||
Stopping here since I haven't found more. Will continue when Fluendo is getting implemented into the tree to test the codec inside the Browser instead of gstreamer.
|
|
||
Updated•12 years ago
|
Keywords: sec-review-needed
Whiteboard: [secr:cdiehl][fuzzing needed] → [fuzzing][start mm/dd/yyyy][target mm/dd/yyyy]
Risk/Priority Ranking Exercise https://wiki.mozilla.org/Security/RiskRatings Priority: N/A Operational: 0 - N/A User: 1 - Minor Privacy: 0 - N/A Engineering: 1 - Minor Reputational: 2 - Normal Priority Score: 0
Whiteboard: [fuzzing][start mm/dd/yyyy][target mm/dd/yyyy] → [fuzzing][start mm/dd/yyyy][target mm/dd/yyyy][score:0::Low]
|
|
Assignee | |
Comment 6•12 years ago
|
||
Marking this as resolved since it is an ongoing task in our fuzzing queue.
Status: ASSIGNED → RESOLVED
Closed: 12 years ago
Resolution: --- → FIXED
Summary: review fluendo mp3 decoder source → SecReview: Fluendo MP3 decoder
Whiteboard: [fuzzing][start mm/dd/yyyy][target mm/dd/yyyy][score:0::Low] → [completed secreview][score:0::Low]
You need to log in
before you can comment on or make changes to this bug.
Description
•