The decode_ihdr_chunk function in libavcodec/pngdec.c in FFMpeg before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote attackers to cause a denial of service (out-of-bounds heap access) and possibly have other unspecified impact via an IDAT before an IHDR in a PNG file.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2014-12-09 15:59
Updated : 2018-12-21 03:29
NVD link : CVE-2014-9317
Mitre link : CVE-2014-9317
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
ffmpeg
- ffmpeg