mailing list archives
CVE id request: ffmpeg
From: Nico Golde <oss-security+ml () ngolde de>
Date: Wed, 30 Nov 2011 13:38:14 +0100
it seems the new ffmpeg issue described in
http://www.usenix.org/events/woot11/tech/final_files/Yamaguchi.pdf has fallen
through the cracks. Can someone assign a CVE id to the described issue in
vmd_decode (see see page 6, Extrapolation. page 7 contains the vulnerable code)?
Please note that this is not CVE-2010-3429. The paper is about finding bugs
similar to a given one and CVE-2010-3429 is the original bug, while the one in
vmd_decode is similar.
Nico Golde - http://www.ngolde.de - nion () jabber ccc de - GPG: 0xA0A0AAAA
For security reasons, all text in this mail is double-rot13 encrypted.
- CVE id request: ffmpeg Nico Golde (Nov 30)