1017 - Adobe Flash: Heap overflow in AVC header slicing - project-zero

Starred by 1 user

Status:	Fixed
Owner:	natashenka@google.com
Closed:	Jan 2017
Cc:	project-...@google.com
Finder-natashenka Deadline-90 CCProjectZeroMembers Product-Flash Severity-High Vendor-Adobe Finder-mjurczyk Reported-2016-Nov-29 CVE-2017-2935

Adobe Flash: Heap overflow in AVC header slicing

Project Member Reported by natashenka@google.com, Nov 30 2016

Back to list

There is a heap overflow in AVC header slicing. To reproduce the issue, put the attached files on a server and visit http://127.0.0.1/LoadImage.swf?img=slice.flv.


This bug is subject to a 90 day disclosure deadline. If 90 days elapse
without a broadly available patch, then the bug report will automatically
become visible to the public.

slice.flv
68 bytes Download

LoadImage.swf
1.2 KB Download

Project Member Comment 1 by natashenka@google.com, Jan 10 2017

Labels: CVE-2017-2935
Status: Fixed

Fixed in today's update

Project Member Comment 2 by mjurczyk@google.com, Mar 14 2017

Labels: -Restrict-View-Commit

► Sign in to add a comment