diff options
author | Tobias Stoeckmann <tobias@stoeckmann.org> | 2017-01-06 23:33:16 +0100 |
---|---|---|
committer | Michael Niedermayer <michael@niedermayer.cc> | 2017-01-08 03:50:56 +0100 |
commit | 95d9a85ca3e662388d5fa7ef1937d1c3fbe2dcd5 (patch) | |
tree | b871fcae903881d5fa4db8a8c3519928a5a89fa2 /libavcodec/vp9.c | |
parent | fd010406c03923065ff9b835472f3f174e1c722d (diff) | |
download | ffmpeg-95d9a85ca3e662388d5fa7ef1937d1c3fbe2dcd5.tar.gz |
ffserver: local OOB write with custom program name
When the command line for children is created, it is assumed that
my_program_name always ends with "ffserver", which doesn't have to
be true if ffserver is called through a symbolic link.
In such a case, it could be that not enough space for "ffmpeg" is
available at the end, leading to a buffer overflow.
One example would be:
$ ln -s /usr/bin/ffserver ~/f; ~/f
As this is only a local buffer overflow, i.e. is based on a weird
program call, this has NO security impact.
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
Diffstat (limited to 'libavcodec/vp9.c')
0 files changed, 0 insertions, 0 deletions