oss-sec mailing list archives
Re: libav: multiple crashes from the Undefined Behavior Sanitizer
From: Agostino Sarubbo <ago () gentoo org>
Date: Sun, 04 Dec 2016 23:35:18 +0100
On Thursday 01 December 2016 14:30:33 Agostino Sarubbo wrote:
Affected version / Tested on: 11.8 Output/failure: /tmp/portage/media- video/libav-11.8/work/libav-11.8/libavcodec/get_bits.h:530:5: runtime error: load of null pointer of type ‘int16_t’ (aka ‘short’) Commit fix: N/A Fixed version: N/A Testcase: https://github.com/asarubbo/poc/blob/master/00042-libav-loadnullptr-get_bits _h
Please ignore the issue above. It was already tracked as CVE-2016-8676. -- Agostino Sarubbo Gentoo Linux Developer
Current thread:
- libav: multiple crashes from the Undefined Behavior Sanitizer Agostino Sarubbo (Dec 01)
- Re: libav: multiple crashes from the Undefined Behavior Sanitizer Agostino Sarubbo (Dec 04)
- Re: libav: multiple crashes from the Undefined Behavior Sanitizer cve-assign (Dec 04)