A vulnerability was found in FFmpeg 2.0. It has been declared as problematic. Affected by this vulnerability is the function decode_frame of the file libavcodec/ansi.c. The manipulation leads to integer coercion error. The attack can be launched remotely. It is recommended to apply a patch to fix this issue.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NFfmpeg
APPFfmpeg2.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Related vulnerabilities
CVE-2024-35368CRITICAL9.8PL ✓ten sam produkt
Double Free w FFmpeg — podatność w dekoderze RKMPP (libavcodec)
CVE-2024-35367CRITICAL9.1PL ✓ten sam produkt
FFmpeg: Out-of-bounds Read w dekoderze VP8 na architekturze PowerPC (AltiVec)
CVE-2024-35366CRITICAL9.1PL ✓ten sam produkt
FFmpeg: Integer Overflow w parse_options (sbgdec.c) — moduł libavformat
CVE-2024-31581CRITICAL9.8PL ✓ten sam produkt
FFmpeg: nieprawidłowa walidacja indeksu tablicy w dekodowaniu H.266
CVE-2024-22862CRITICAL9.8PL ✓ten sam produkt
Integer overflow w FFmpeg — RCE przez parser JPEG XL