libvpx.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Jingning Han <jingning@google.com>	2014-06-12 12:23:06 -0700
committer	Jingning Han <jingning@google.com>	2014-06-13 11:10:36 -0700
commit	1ba18717861c5da614619428389f29e00b175e8e (patch)
tree	27db55b9877dff8ed625feb93027d3690375daff /docs.mk
parent	5556d1184169168e59656863456c88c3f958ca45 (diff)
download	libvpx-1ba18717861c5da614619428389f29e00b175e8e.tar libvpx-1ba18717861c5da614619428389f29e00b175e8e.tar.gz libvpx-1ba18717861c5da614619428389f29e00b175e8e.tar.bz2 libvpx-1ba18717861c5da614619428389f29e00b175e8e.zip

Fix out of boundary memory read in fuzz test on vpxdec

This commit fixes frame header decoding for superframe index, to prevent out of boundary memory read triggered by fuzz test vector. It resolves a chromium security violation issue crbug.com/376802. The issue was introduced in the change: Add VPXD_SET_DECRYPTOR support to the VP9 decoder. cl-id I88f86c8ff9af34e0b6531028b691921b54c2fc48 where the buffer was read before validation check on index offset applied. A test vector is added accordingly. Change-Id: I41c988e776bbdd1033312a668e03a3dbcf44ca99

Diffstat (limited to 'docs.mk')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: