[FFmpeg-devel] Is ffmpeg 2.8.11 vulnerable to clusterfuzz 4999324687663104?

Pal Azzo palazzo837 at gmail.com
Wed Apr 26 02:37:57 EEST 2017


I'm having trouble decoding this clusterfuzz report:

Was trying to figure out if 2.8.11 is vulnerable. It's not clear which
commit was the fix, but it looks like none of the commits in the regression
range made it to the 2.8 branch. Was that because 2.8 was never vulnerable
to it?


More information about the ffmpeg-devel mailing list