da0a99f0094b3f41d0d78e1dfd62b07f2bb94766 - fp2-dev/platform/external/libvpx

commit	da0a99f0094b3f41d0d78e1dfd62b07f2bb94766	[log] [tgz]
author	Teow Wan Yee <wy.teow@hi-p.com>	Mon Oct 10 17:20:43 2016 +0800
committer	Teow Wan Yee <wy.teow@hi-p.com>	Mon Oct 10 17:20:43 2016 +0800
tree	0a2045ce87ea6dc584d9dc40ee5dcfc700b57d8b
parent	9c27a8dbce4c654dd152df3668aded9102ef81bf [diff]

FPII-2476 :Denial of service vulnerability in Mediaserver CVE-2016-6712
A-30593752

The vp9_alloc_context_buffers function does not clear the cm->mi* buffer on failure leading
to the possibility of remote denial of service.

The fix is designed to clear the cm->mi* buffer on failure.

Change-Id: Iea99efc887b65edc2ecc29b478f0d88a8401963d

libvpx/vp9/common/vp9_alloccommon.c[diff]

1 file changed

tree: 0a2045ce87ea6dc584d9dc40ee5dcfc700b57d8b

config/
libvpx/
libwebm/
Android.mk
config.arm.mk
config.arm64.mk
config.mips.mk
config.mips64.mk
config.x86.mk
config.x86_64.mk
generate_config.sh
libvpx-asm-translation.mk
libvpx.mk
libwebm.mk
lint_config.sh
MODULE_LICENSE_BSD
NOTICE
README.android
update_libvpx.sh