cbs_jpeg_split_fragment in libavcodec/cbs_jpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEG_MARKER_SOS handling because of a missing length check.
References
Link | Resource |
---|---|
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=19734 | Exploit Issue Tracking Vendor Advisory |
https://github.com/FFmpeg/FFmpeg/commit/1812352d767ccf5431aa440123e2e260a4db2726 | Patch Third Party Advisory |
https://github.com/FFmpeg/FFmpeg/commit/a3a3730b5456ca00587455004d40c047f7b20a99 | Patch Third Party Advisory |
https://security.gentoo.org/glsa/202007-58 | Third Party Advisory |
https://usn.ubuntu.com/4431-1/ | Third Party Advisory |
https://www.debian.org/security/2020/dsa-4722 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
29 Apr 2022, 13:25
Type | Values Removed | Values Added |
---|---|---|
References | (DEBIAN) https://www.debian.org/security/2020/dsa-4722 - Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4431-1/ - Third Party Advisory | |
References | (MISC) https://github.com/FFmpeg/FFmpeg/commit/a3a3730b5456ca00587455004d40c047f7b20a99 - Patch, Third Party Advisory | |
References | (GENTOO) https://security.gentoo.org/glsa/202007-58 - Third Party Advisory | |
CPE | cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:* cpe:2.3:a:ffmpeg:ffmpeg:4.1:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:* cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* |
Information
Published : 2020-04-28 06:15
Updated : 2024-02-04 21:00
NVD link : CVE-2020-12284
Mitre link : CVE-2020-12284
CVE.ORG link : CVE-2020-12284
JSON object : View
Products Affected
canonical
- ubuntu_linux
debian
- debian_linux
ffmpeg
- ffmpeg
CWE
CWE-787
Out-of-bounds Write