2 matches found
CVE-2013-3675
The processframeobj function in sanm.c in libavcodec in FFmpeg before 1.2.1 does not validate width and height values, which allows remote attackers to cause a denial of service integer overflow, out-of-bounds array access, and application crash via crafted LucasArts Smush video data...
CVE-2013-3675
FFmpeg libavcodec, specifically the process_frame_obj in sanm.c, is vulnerable to a denial-of-service due to unvalidated width/height values when parsing LucasArts Smush data (FFmpeg before 1.2.1). The root cause is an integer overflow and out-of-bounds array access that can crash the application...