The cdg_decode_frame function in cdgraphics.c in libavcodec in FFmpeg before 1.2.1 does not validate the presence of non-header data in a buffer, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted CD Graphics Video data.
References
Configurations
History
07 Nov 2023, 02:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2013-06-10 03:19
Updated : 2024-02-28 12:00
NVD link : CVE-2013-3674
Mitre link : CVE-2013-3674
CVE.ORG link : CVE-2013-3674
JSON object : View
Products Affected
ffmpeg
- ffmpeg
CWE
CWE-20
Improper Input Validation