This is an automated email from the git hooks/post-receive script. Git pushed a commit to branch release/8.0 in repository ffmpeg.
commit 909d417b6b3fc51c561f0c9d790f1a7329b2bfc9 Author: Timo Rothenpieler <[email protected]> AuthorDate: Sat Jan 3 19:55:56 2026 +0100 Commit: Michael Niedermayer <[email protected]> CommitDate: Sun May 3 19:49:54 2026 +0200 avcodec/notchlc: zero-initialize history buffer Otherwise a specially crafted bitstream can potentially read uninitialized stack memory. Fixes #YWH-PGM40646-37 (cherry picked from commit b5d6cfd55b3f61a27823899c4b26997ca5216024) Signed-off-by: Michael Niedermayer <[email protected]> --- libavcodec/notchlc.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/libavcodec/notchlc.c b/libavcodec/notchlc.c index d99de1810e..5a0713feb8 100644 --- a/libavcodec/notchlc.c +++ b/libavcodec/notchlc.c @@ -79,7 +79,7 @@ static int lz4_decompress(AVCodecContext *avctx, PutByteContext *pb) { unsigned reference_pos, delta, pos = 0; - uint8_t history[64 * 1024]; + uint8_t history[64 * 1024] = { 0 }; int match_length; while (bytestream2_get_bytes_left(gb) > 0) { _______________________________________________ ffmpeg-cvslog mailing list -- [email protected] To unsubscribe send an email to [email protected]
