CVE-2013-7014

Published: Dec 9, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Integer signedness error in the add_bytes_l2_c function in libavcodec/pngdsp.c in FFmpeg before 2.1 allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted PNG data.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

DSA-2855

vendor-advisory

x_refsource_DEBIAN

GLSA-201603-06

vendor-advisory

x_refsource_GENTOO

https://github.com/FFmpeg/FFmpeg/commit/86736f59d6a527d8bc807d09b93f971c0fe0bb07

x_refsource_CONFIRM

http://ffmpeg.org/security.html

x_refsource_CONFIRM

[oss-security] 20131208 Re: CVE Request: FFmpeg 2.1 multiple problems

mailing-list

x_refsource_MLIST

https://trac.ffmpeg.org/ticket/2919

x_refsource_CONFIRM

http://git.libav.org/?p=libav.git%3Ba=blob%3Bf=Changelog%3Bhb=refs/tags/v9.11

x_refsource_CONFIRM

[oss-security] 20131126 CVE Request: FFmpeg 2.1 multiple problems

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-7014

Description

Affected Products

References