oss-sec mailing list archives
Re: [CVE-2017-15186]: ffmpeg: Double free when ffmpeg parsing an craft AVI file to MKV file using ffvhuff decoder
From: ludo () gnu org (Ludovic Courtès)
Date: Fri, 20 Oct 2017 14:52:21 +0200
Hi, 连一汉 <lianyihan () 360 cn> skribis:
FFmpeg trigger double-free when it parsing an craft AVI file to MKV file using ffvhuff decoder.
[...]
This was fixed with the following commit: https://www.ffmpeg.org/download.html#releases
Looks like this is not the URL you intended to share, is it? Ludo’.
Current thread:
- [CVE-2017-15186]: ffmpeg: Double free when ffmpeg parsing an craft AVI file to MKV file using ffvhuff decoder 连一汉 (Oct 20)
- Re: [CVE-2017-15186]: ffmpeg: Double free when ffmpeg parsing an craft AVI file to MKV file using ffvhuff decoder Ludovic Courtès (Oct 20)
- Re: [CVE-2017-15186]: ffmpeg: Double free when ffmpeg parsing an craft AVI file to MKV file using ffvhuff decoder Salvatore Bonaccorso (Nov 06)
- Re: [CVE-2017-15186]: ffmpeg: Double free when ffmpeg parsing an craft AVI file to MKV file using ffvhuff decoder Ludovic Courtès (Oct 20)