2 matches found
Denial Of Service (DoS)
FFmpeg is vulnerable to denial of service DoS attacks and possibly other attacks. The library does not ensure that the pixfmt parameter is set, allowing a malicious user to cause the application to crash by passing a file to the system...
CVE-2017-9994
libavcodec/webp.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 does not ensure that pixfmt is set, which allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecifie...