Lucene search

K
osvGoogleOSV:CVE-2020-12284
HistoryApr 28, 2020 - 6:15 a.m.

CVE-2020-12284

2020-04-2806:15:10
Google
osv.dev
13

AI Score

7.1

Confidence

Low

EPSS

0.049

Percentile

92.9%

cbs_jpeg_split_fragment in libavcodec/cbs_jpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEG_MARKER_SOS handling because of a missing length check.