CVE-2019-9718

In FFmpeg 3.2 and 4.1, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because ffhtmlmarkuptoass in libavcodec/htmlsubtitles.c has a complex format argument to sscanf...

CVE-2019-9718

CVE-2019-9718 is a DoS in FFmpeg’s subtitle decoder, affecting FFmpeg 3.2 and 4.1 via the Matroska subtitle path. The root cause is a complex format string in ff_htmlmarkup_to_ass in libavcodec/htmlsubtitles.c that enables consuming excessive CPU when parsing crafted Matroska subtitles. Public ad...

FFmpeg 'ff_htmlmarkup_to_ass' function denial of service vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'ffhtmlmarkuptoass' function in the libavcodec/htmlsubtitles.c file of the subtitle decoder in FFmpeg version 4.1. A remote attacker can exploit this...

ffmpeg: Heap-buffer-overflow in ff_htmlmarkup_to_ass

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=5520132195483648 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDSAMIfuzzer Fuzz target binary: ffmpegAVCODECIDSAMIfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow...

ffmpeg: Stack-buffer-overflow in ff_htmlmarkup_to_ass

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6380176053108736 Target: ffmpeg Fuzzer: libFuzzerffmpegSUBTITLEAVCODECIDSUBRIPfuzzer Fuzzer binary: ffmpegSUBTITLEAVCODECIDSUBRIPfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linu...

ffmpeg: Stack-buffer-overflow in ff_htmlmarkup_to_ass

Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=6380176053108736 Target: ffmpeg Fuzzer: libFuzzerffmpegSUBTITLEAVCODECIDSUBRIPfuzzer Fuzzer binary: ffmpegSUBTITLEAVCODECIDSUBRIPfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: Stack-buffer-overflow READ 1...