angler-fishThe Vulnerability History Project

avformat/rtmppkt: Convert ff_amf_tag_size() to bytestream2

      Fixes: out of array accesses
Fixes: crash-9238fa9e8d4fde3beda1f279626f53812cb001cb-SEGV

Found-by: JunDong Xie of Ant-financial Light-Year Security Lab
Signed-off-by: Michael Niedermayer <michael@niedermayer.cc>
by Neal the Discus 2017-07-28 11:41:59 UTC
commit 08c073434e25cba8c43aae5ed9554fdd594adfb0
FFmpeg Fix Malicious RTMP Stream Crash CVE-2017-11665
libavformat/rtmppkt.c
+20 -48
expand_less