EPSS
Percentile
73.9%
ffmpeg is vulnerable to arbitrary code execution. A heap-based buffer overflow vulnerability in libavcodec/get_bits.h when writing .mov files allows an attacker to execute arbitrary code on the host OS.
libavcodec/get_bits.h
lists.debian.org/debian-lts-announce/2021/08/msg00018.html
security-tracker.debian.org/tracker/CVE-2020-22016
trac.ffmpeg.org/ticket/8183
www.debian.org/security/2021/dsa-4990