[FFmpeg-devel] [RFC] Sechole in gcc 3.3+ and 4.*

Måns Rullgård mans
Mon Apr 7 20:30:10 CEST 2008

Reimar D?ffinger <Reimar.Doeffinger at stud.uni-karlsruhe.de> writes:

> On Mon, Apr 07, 2008 at 02:18:16PM +0200, Michael Niedermayer wrote:
>> Lars T?uber, told me about a sechole in gcc 4.2+
>> http://www.heise.de/newsticker/GCC-optimiert-Sicherheitspruefungen-weg--/meldung/106097
>> http://www.kb.cert.org/vuls/id/162289
>> The issue described though is rather harmless.
>> That is i think a check like buf+len < buf makes little sense.
> I think a old version of my lzo code had this, so keep your eyes open
> for constructs like that ;-).

It's not a problem with unsigned numbers.

M?ns Rullg?rd
mans at mansr.com

More information about the ffmpeg-devel mailing list