Skip to content

Which 1.4.0 commit fixed CVE-2024-1580

Hello,

In 1.4.0 you said in NEWS that you fixed CVE-2024-1580 ( https://nvd.nist.gov/vuln/detail/CVE-2024-1580 ). I'd like to backport this to 1.2.1, but I can't see in the commit log in which one you fixed the issue, it isn't mentioned, and I didn't find one related to an integer overflow. Could you point it to me please?

Have a great weekend.

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information

VideoLAN code repository instance