QwikSec

Security Database

CVE

CWE

Training

CVE-2013-0862

Published: Nov 23, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple integer overflows in the process_frame_obj function in libavcodec/sanm.c in FFmpeg before 1.1.2 allow remote attackers to have an unspecified impact via crafted image dimensions in LucasArts Smush video data, which triggers an out-of-bounds array access.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=f4fb841ad13bab66d4fb0c7ff2a94770df7815d8

x_refsource_CONFIRM

http://www.ffmpeg.org/security.html

x_refsource_CONFIRM

vendor-advisory

x_refsource_GENTOO

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.