FFMpeg is vulnerable to denial of service (DoS) attacks and possibly other attacks. These attacks are possible because on2avc.c does not restrict the number of channels to 2 or less. This allows remote attackers to cause an out-of-bounds access through On2 data.