The decode_init function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via an AVI file.
CPE | Name | Operator | Version |
---|---|---|---|
ffmpeg.git | eq | n2.8-de | |
ffmpeg.git | eq | n3.2-de | |
ffmpeg.git | eq | n0.12-de | |
ffmpeg.git | eq | n2.1-de | |
ffmpeg.git | eq | n2.3-de | |
ffmpeg.git | eq | n1.1-de | |
ffmpeg.git | eq | n3.1-de | |
ffmpeg.git | eq | n2.6-de | |
ffmpeg.git | eq | n3.4.1 | |
ffmpeg.git | eq | n3.4 |