2 matches found
CVE-2021-45385
A Null Pointer Dereference vulnerability exits in ffjpeg d5cfd49 2021-12-06 in bmpload. When the size information in metadata of the bmp is out of range, it returns without assign memory buffer to pb-pdata and did not exit the program. So the program crashes when it tries to access the pb-data, i...
CVE-2021-45385
Summary (CVE-2021-45385 – ffjpeg) A Null Pointer Dereference affects ffjpeg (revision d5cfd49, 2021-12-06) in bmp_load(). When BMP metadata size is out of range, the code may skip allocating memory to pb->pdata and continue execution, causing a crash when jfif_encode() accesses pb->data (jf...