maintainer-feedback requested: [Bug 206282] multimedia/ffmpeg zero-day vulnerability HLS
bugzilla-noreply at freebsd.org
bugzilla-noreply at freebsd.org
Fri Jan 15 02:58:21 UTC 2016
sasamotikomi at gmail.com has reassigned Bugzilla Automation
<bugzilla at FreeBSD.org>'s request for maintainer-feedback to
multimedia at FreeBSD.org:
Bug 206282: multimedia/ffmpeg zero-day vulnerability HLS
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=206282
--- Description ---
Attacker can simple put m3u8 in media container and get access to your local
file( for example password).
I recommend build ffmpeg with --disable-network
http://news.softpedia.com/news/zero-day-ffmpeg-vulnerability-lets-anyone-steal-
files-from-remote-machines-498880.shtml
More information about the freebsd-multimedia
mailing list