Fix potential vulnerability in cloned code #297

manh-td · 2025-12-19T02:03:25Z

manh-td commented

2025-12-19 02:03:25 +00:00

This PR fixes a potential security vulnerability in parse_video_info that was cloned from FFmpeg/FFmpeg but did not receive the security patch.

Vulnerability Details:

Affected Function: parse_video_info in contrib/sdk/sources/ffmpeg/ffmpeg-2.8/libavformat/asfdec_o.c
Original Fix: 2b46ebdbff

What this PR does: This PR applies the same security patch that was applied to the original repository to eliminate the potential vulnerability in the cloned code.

References:

Please review and merge this PR to ensure your repository is protected against this vulnerability.

This PR fixes a potential security vulnerability in `parse_video_info` that was cloned from `FFmpeg/FFmpeg` but did not receive the security patch. **Vulnerability Details:** * **Affected Function**: `parse_video_info` in `contrib/sdk/sources/ffmpeg/ffmpeg-2.8/libavformat/asfdec_o.c` * **Original Fix**: https://github.com/FFmpeg/FFmpeg/commit/2b46ebdbff1d8dec7a3d8ea280a612b91a582869 **What this PR does:** This PR applies the same security patch that was applied to the original repository to eliminate the potential vulnerability in the cloned code. **References:** * https://github.com/FFmpeg/FFmpeg/commit/2b46ebdbff1d8dec7a3d8ea280a612b91a582869 * [CVE-2018-1999011](https://nvd.nist.gov/vuln/detail/CVE-2018-1999011) Please review and merge this PR to ensure your repository is protected against this vulnerability.

manh-td added 1 commit 2025-12-19 02:03:25 +00:00

Check size_bmp more fully

Build system / Check kernel codestyle (pull_request) Successful in 3m8s

Details

Build system / Build (pull_request) Successful in 31m48s

Details

ca6b0f142c

Burer approved these changes 2025-12-19 08:11:31 +00:00

manh-td referenced this pull request

2025-12-22 04:34:42 +00:00

Fix potential vulnerabilities in cloned code #300

mxlgv commented