6.6 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.6%
The read_header function in libavcodec/shorten.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via an invalid channel count, related to “freeing invalid addresses.”
git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=4f1279154ee9baf2078241bf5619774970d18b25
www.ffmpeg.org/security.html
security.gentoo.org/glsa/201603-06