AI Score
Confidence
Low
EPSS
Percentile
71.3%
The old_codec37 function in libavcodec/sanm.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via crafted LucasArts Smush data that has a large size when decoded, related to an out-of-bounds array access.
git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=365270aec5c2b9284230abc702b11168818f14cf
www.ffmpeg.org/security.html
security.gentoo.org/glsa/201603-06