[FFmpeg-devel] [RFC] Sechole in gcc 3.3+ and 4.*
Reimar Döffinger
Reimar.Doeffinger
Mon Apr 7 18:42:38 CEST 2008
On Mon, Apr 07, 2008 at 02:18:16PM +0200, Michael Niedermayer wrote:
> Lars T?uber, told me about a sechole in gcc 4.2+
> http://www.heise.de/newsticker/GCC-optimiert-Sicherheitspruefungen-weg--/meldung/106097
> http://www.kb.cert.org/vuls/id/162289
>
> The issue described though is rather harmless.
> That is i think a check like buf+len < buf makes little sense.
I think a old version of my lzo code had this, so keep your eyes open
for constructs like that ;-).
More information about the ffmpeg-devel
mailing list