-
Notifications
You must be signed in to change notification settings - Fork 146
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
heap-buffer-overflow in hevc.cpp:502:37 #436
Labels
bug
Something isn't working
Comments
lighterowl
pushed a commit
that referenced
this issue
Jun 9, 2021
As per T-REC-H265 standard sub-clause 7.4.2.2., when nal_unit_type == VPS_NUT or SPS_NUT or EOS_NUT or EOB_NUT, nuh_temporal_id shall be equal to 0. This patch allows early return when this condition is not fulfilled therefore the stream is obviously not hevc. Fixes #418, #419, #420, #424, #436, #437.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi, please see asan output and poc file below.
Found by Cem Onat Karagun of Diesec
As you can see on backtrace
System info:
To run PoC after unzip:
short_term_1.zip
Asan output:
The text was updated successfully, but these errors were encountered: