Ffmpeg 'cine_read_header()' function denial of service vulnerability

Fmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'cinereadheader' function in FFmpeg version 3.3.3, which stems from the program's failure to adequately validate the EOF, and can be exploited to cause...

UBUNTU-CVE-2017-14059

In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...

DEBIAN-CVE-2017-14059

In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...

ALPINE-CVE-2017-14059

In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...