[FFmpeg-trac] #4357(avcodec:new): Potential DoS in mpeg4video parser

FFmpeg trac at avcodec.org
Sun May 31 03:05:53 CEST 2015


#4357: Potential DoS in mpeg4video parser
------------------------------------+-----------------------------------
             Reporter:  jmaggard10  |                    Owner:
                 Type:  defect      |                   Status:  new
             Priority:  normal      |                Component:  avcodec
              Version:  git-master  |               Resolution:
             Keywords:              |               Blocked By:
             Blocking:              |  Reproduced by developer:  0
Analyzed by developer:  0           |
------------------------------------+-----------------------------------

Comment (by michael):

 You can limit the maximum for a single allocation by using -max_alloc X,
 most platforms also provide a way to limit the sum of all allocations of a
 process.
 Its certainly possibly to limit the amount of allocated memory for a file
 of just zeros and maybe we should but, one can always create a file with a
 arbitrary large or long valid video which would need arbitrary amounts of
 memory to decode, thus i think theres not much better than a user
 specified limit that can be done here.

--
Ticket URL: <https://trac.ffmpeg.org/ticket/4357#comment:1>
FFmpeg <https://ffmpeg.org>
FFmpeg issue tracker


More information about the FFmpeg-trac mailing list