The dv_extract_audio function in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted DV file.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2012-08-20 18:55
Updated : 2024-02-04 18:16
NVD link : CVE-2011-3936
Mitre link : CVE-2011-3936
CVE.ORG link : CVE-2011-3936
JSON object : View
Products Affected
ffmpeg
- ffmpeg
libav
- libav
CWE
CWE-20
Improper Input Validation