1. 08 Jan, 2017 1 commit
    • Tobias Stoeckmann's avatar
      ffserver: local OOB write with custom program name · 95d9a85c
      Tobias Stoeckmann authored
      When the command line for children is created, it is assumed that
      my_program_name always ends with "ffserver", which doesn't have to
      be true if ffserver is called through a symbolic link.
      
      In such a case, it could be that not enough space for "ffmpeg" is
      available at the end, leading to a buffer overflow.
      
      One example would be:
      
      $ ln -s /usr/bin/ffserver ~/f; ~/f
      
      As this is only a local buffer overflow, i.e. is based on a weird
      program call, this has NO security impact.
      Signed-off-by: 's avatarMichael Niedermayer <michael@niedermayer.cc>
      95d9a85c
  2. 05 Dec, 2016 1 commit
  3. 03 Dec, 2016 1 commit
  4. 01 Dec, 2016 1 commit
  5. 30 Nov, 2016 3 commits
  6. 29 Nov, 2016 1 commit
  7. 28 Nov, 2016 4 commits
  8. 27 Nov, 2016 2 commits
  9. 08 Nov, 2016 6 commits
  10. 07 Nov, 2016 6 commits
  11. 08 Aug, 2016 1 commit
  12. 26 May, 2016 1 commit
  13. 08 Mar, 2016 1 commit
  14. 21 Feb, 2016 1 commit
    • Oliver Collyer's avatar
      ffserver&ffm: Fixed issues preventing ffserver write_index and files_size from... · a2f8beef
      Oliver Collyer authored
      ffserver&ffm: Fixed issues preventing ffserver write_index and files_size from being set correctly which was breaking ffserver streaming.
      
      I discovered that ffserver streaming was broken (it seems like it has been since 20th November) and I opened a ticket for this (https://trac.ffmpeg.org/ticket/5250 <https://trac.ffmpeg.org/ticket/5250>).
      
      I spent yesterday learning git bisect (with the kind help of cehoyos) to painstakingly track down the cause. This was made more difficult due to the presence of a segfault in ffserver during the period where the bug was introduced so I first had to identify when and how that was fixed and then retrospectively apply that fix again for each step of the second git bisect to find the actual bug.
      
      Anyway, the fruits of my labour are the innocent looking patch below to correct a couple of typos and define a valid range for two variables.
      Signed-off-by: 's avatarMichael Niedermayer <michael@niedermayer.cc>
      a2f8beef
  15. 29 Dec, 2015 1 commit
  16. 27 Dec, 2015 3 commits
  17. 19 Dec, 2015 3 commits
  18. 15 Dec, 2015 3 commits