You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
We (School of Cyber Science and Technology, Shandong University) found that MP4_ReadLengthDescriptor can cause buffer overflow when it processes malformed messages.
Expected behavior
If Asan is enabled at compile time, the MP4_ReadLengthDescriptor crashes and displays ASAN information.
Actual Behavior
If Asan is enabled at compile time, the MP4_ReadLengthDescriptor crashes and displays ASAN information, which can cause DOS.
Describe the bug
We (School of Cyber Science and Technology, Shandong University) found that
MP4_ReadLengthDescriptorcan cause buffer overflow when it processes malformed messages.Expected behavior
If Asan is enabled at compile time, the
MP4_ReadLengthDescriptorcrashes and displays ASAN information.Actual Behavior
If Asan is enabled at compile time, the
MP4_ReadLengthDescriptorcrashes and displays ASAN information, which can cause DOS.To Reproduce
Similarly, we will upload a vulnerability POC to https://drive.google.com/file/d/1yArMfsdR7ttT4grdHwC_IHCazacY-aCC/view?usp=share_link to help developers fix this vulnerability.
Environment Details
The text was updated successfully, but these errors were encountered: