ffmpeg
Page content
- Author: Miklos Vajna
- Vulnerable: ffmpeg-20080427-7
- Unaffected: ffmpeg-20080427-8solaria1
Tobias Klein has reported a vulnerability in FFmpeg, which potentially can be exploited by malicious people to compromise an application using the library. The vulnerability is caused due to a signedness error within the “fourxm_read_header()” function in libavformat/4xm.c. This can be exploited to corrupt arbitrary memory via a specially crafted 4xm file. Successful exploitation may allow execution of arbitrary code.
- Bug Tracker URL: http://bugs.frugalware.org/task/3599