aboutsummaryrefslogtreecommitdiffstats
path: root/tests/ref/fate/h264-conformance-frext-hi422fr6_sony_a
diff options
context:
space:
mode:
authorTobias Stoeckmann <tobias@stoeckmann.org>2017-01-06 23:33:16 +0100
committerMichael Niedermayer <michael@niedermayer.cc>2017-01-08 03:50:56 +0100
commit95d9a85ca3e662388d5fa7ef1937d1c3fbe2dcd5 (patch)
treeb871fcae903881d5fa4db8a8c3519928a5a89fa2 /tests/ref/fate/h264-conformance-frext-hi422fr6_sony_a
parentfd010406c03923065ff9b835472f3f174e1c722d (diff)
downloadffmpeg-95d9a85ca3e662388d5fa7ef1937d1c3fbe2dcd5.tar.gz
ffserver: local OOB write with custom program name
When the command line for children is created, it is assumed that my_program_name always ends with "ffserver", which doesn't have to be true if ffserver is called through a symbolic link. In such a case, it could be that not enough space for "ffmpeg" is available at the end, leading to a buffer overflow. One example would be: $ ln -s /usr/bin/ffserver ~/f; ~/f As this is only a local buffer overflow, i.e. is based on a weird program call, this has NO security impact. Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
Diffstat (limited to 'tests/ref/fate/h264-conformance-frext-hi422fr6_sony_a')
0 files changed, 0 insertions, 0 deletions