2 matches found
CVE-2014-9676
The segwritepacket function in libavformat/segment.c in ffmpeg 2.1.4 and earlier does not free the correct memory location, which allows remote attackers to cause a denial of service "invalid memory handler" and possibly execute arbitrary code via a crafted video that triggers a use after free...
CVE-2014-9676
FFmpeg libavformat/segment.c seg_write_packet (FFmpeg 2.1.4 and earlier) does not free the correct memory, enabling a use-after-free that can cause a denial of service and possibly allow arbitrary code execution via crafted video. Impact is tied to remote attacker access (network) and partial con...