FFmpeg through 4.3 has a heap-based buffer overflow in avio_get_str in libavformat/aviobuf.c because dnn_backend_native.c calls ff_dnn_load_model_native and a certain index check is omitted.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | ffmpeg | < 7:4.3.1-1 | ffmpeg_7:4.3.1-1_all.deb |
Debian | 11 | all | ffmpeg | < 7:4.3.1-1 | ffmpeg_7:4.3.1-1_all.deb |
Debian | 10 | all | ffmpeg | < 7:4.1.9-0+deb10u1 | ffmpeg_7:4.1.9-0+deb10u1_all.deb |
Debian | 999 | all | ffmpeg | < 7:4.3.1-1 | ffmpeg_7:4.3.1-1_all.deb |
Debian | 13 | all | ffmpeg | < 7:4.3.1-1 | ffmpeg_7:4.3.1-1_all.deb |