Computer Security
[EN] securityvulns.ru no-pyccku


libavcodec / FFmpeg / MPlayer buffer overflow
Published:12.08.2011
Source:
SecurityVulns ID:11855
Type:library
Threat Level:
5/10
Description:Buffer overflow in CAVS decoding.
Affected:MPLAYER : MPlayer 1.0
 LIBAVCODEC : libavcodec 0.7
 FFMPEG : FFmpeg 0.7
CVE:CVE-2011-3362 (Integer signedness error in the decode_residual_block function in cavsdec.c in libavcodec in FFmpeg before 0.7.3 and 0.8.x before 0.8.2, and libav through 0.7.1, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Chinese AVS video (aka CAVS) file.)
Original documentdocumentDaniele Bianco, [oCERT-2011-002] libavcodec insufficient boundary check (12.08.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod