[PATCH] MP4 32-bit chunk size buffer overrun fix per the corporatists (CVE-2024-7347 2024-08-14)

Barry Allard barry.allard at gmail.com
Sat Aug 24 08:42:16 UTC 2024

Previous message (by thread): [PATCH] MP4 32-bit chunk size buffer overrun fix per the corporatists (CVE-2024-7347 2024-08-14)
Next message (by thread): [PATCH] MP4 32-bit chunk size buffer overrun fix per the corporatists (CVE-2024-7347 2024-08-14)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

LGTM. Sanity testing untrusted input seems a deeper improvement than
just increasing the width of `n`.

It probably could use refactoring of absolute vs. relative position
variable names to increase semantic clarity, but naming things is
hard.

Thanks for your diligent maintenance.

Previous message (by thread): [PATCH] MP4 32-bit chunk size buffer overrun fix per the corporatists (CVE-2024-7347 2024-08-14)
Next message (by thread): [PATCH] MP4 32-bit chunk size buffer overrun fix per the corporatists (CVE-2024-7347 2024-08-14)
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the nginx-devel mailing list