[FFmpeg-devel] Security issues?

Michael Niedermayer michaelni
Wed Sep 23 01:26:21 CEST 2009


On Tue, Sep 22, 2009 at 09:33:47PM +0000, Carl Eugen Hoyos wrote:
> > > Carl Eugen, do you mind if we reopen issue 1240, at least until
> > > they're in individual bug reports?
> > > 
> > > https://roundup.ffmpeg.org/roundup/ffmpeg/issue1240
> > 
> > I mind. The report is invalid and for a good reason, proper bug
> > tracking is impossible with that kind of reports and it shouldn't
> > be encouraged.
> 
> I totally agree.
> 
> I'd like to add that I added most of the reproducible crashes from Chromium to
> roundup, but since nobody reacted (not even "no, this is not security relevant
> because it is just a null-pointer-dereference") I lost interest to check the
> remaining ones.
> I will probably test them this week.
> 

> @Michael: Since you obviously are interested in security-relevant issues: Could
> you downgrade the importance in roundup if you believe the issues are not
> important?

i can but it might take a little time before iam able to look at all the stuff
so, like always help from others is welcome

-- 
Michael     GnuPG fingerprint: 9FF2128B147EF6730BADF133611EC787040B0FAB

Asymptotically faster algorithms should always be preferred if you have
asymptotical amounts of data
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
URL: <http://lists.mplayerhq.hu/pipermail/ffmpeg-devel/attachments/20090923/cc79aba6/attachment.pgp>



More information about the ffmpeg-devel mailing list