This is an automated email from the git hooks/post-receive script. Git pushed a commit to branch master in repository ffmpeg.
commit b5d6cfd55b3f61a27823899c4b26997ca5216024 Author: Timo Rothenpieler <[email protected]> AuthorDate: Sat Jan 3 19:55:56 2026 +0100 Commit: Timo Rothenpieler <[email protected]> CommitDate: Mon Jan 5 13:30:38 2026 +0000 avcodec/notchlc: zero-initialize history buffer Otherwise a specially crafted bitstream can potentially read uninitialized stack memory. Fixes #YWH-PGM40646-37 --- libavcodec/notchlc.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/libavcodec/notchlc.c b/libavcodec/notchlc.c index 82c48d2054..c28fddcea0 100644 --- a/libavcodec/notchlc.c +++ b/libavcodec/notchlc.c @@ -79,7 +79,7 @@ static int lz4_decompress(AVCodecContext *avctx, PutByteContext *pb) { unsigned reference_pos, delta, pos = 0; - uint8_t history[HISTORY_SIZE]; + uint8_t history[HISTORY_SIZE] = { 0 }; int match_length; while (bytestream2_get_bytes_left(gb) > 0) { _______________________________________________ ffmpeg-cvslog mailing list -- [email protected] To unsubscribe send an email to [email protected]
