3 matches found
SUSE CVE-2015-8219
The inittile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.2 does not enforce minimum-value and maximum-value constraints on tile coordinates, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted JP...
openSUSE Security Update : ffmpeg (openSUSE-2015-821)
The ffmpeg package was updated to version 2.8.2 to fix the following security and non security issues : - CVE-2015-8216: Fixed the ljpegdecodeyuvscan function in libavcodec/mjpegdec.c which could cause a denial of service out-of-bounds array access bnc955346. - CVE-2015-8217: Fixed the...
CVE-2015-8219
The CVE-2015-8219 issue affects FFmpeg before 2.8.2, where the init_tile function in libavcodec/jpeg2000dec.c does not enforce minimum/maximum tile-coordinate constraints. This can enable remote attackers to trigger a denial of service via out-of-bounds array access when processing crafted JPEG 2...