A vulnerability was found in FFmpeg 2.0. It has been classified as problematic. Affected is an unknown function of the file libavcodec/dxtroy.c. The manipulation leads to integer coercion error. It is possible to launch the attack remotely. It is recommended to apply a patch to fix this issue.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LFfmpeg
APPFfmpeg2.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Related vulnerabilities
CVE-2024-35368CRITICAL9.8PL ✓ten sam produkt
Double Free w FFmpeg — podatność w dekoderze RKMPP (libavcodec)
CVE-2024-35367CRITICAL9.1PL ✓ten sam produkt
FFmpeg: Out-of-bounds Read w dekoderze VP8 na architekturze PowerPC (AltiVec)
CVE-2024-35366CRITICAL9.1PL ✓ten sam produkt
FFmpeg: Integer Overflow w parse_options (sbgdec.c) — moduł libavformat
CVE-2024-31581CRITICAL9.8PL ✓ten sam produkt
FFmpeg: nieprawidłowa walidacja indeksu tablicy w dekodowaniu H.266
CVE-2024-22862CRITICAL9.8PL ✓ten sam produkt
Integer overflow w FFmpeg — RCE przez parser JPEG XL