The ff_h264_decode_seq_parameter_set function in h264_ps.c in libavcodec in FFmpeg prior to 0.9.1 and in Libav 0.5.x prior to 0.5.9, 0.6.x prior to 0.6.6, 0.7.x prior to 0.7.6, and 0.8.x prior to 0.8.3 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted H.264 file, related to the chroma_format_idc value.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ffmpeg ffmpeg 0.7.7 |
||
ffmpeg ffmpeg 0.7.1 |
||
ffmpeg ffmpeg 0.8.6 |
||
ffmpeg ffmpeg |
||
ffmpeg ffmpeg 0.8.5 |
||
ffmpeg ffmpeg 0.8.10 |
||
ffmpeg ffmpeg 0.7.8 |
||
ffmpeg ffmpeg 0.8.7 |
||
ffmpeg ffmpeg 0.7.9 |
||
ffmpeg ffmpeg 0.7.12 |
||
ffmpeg ffmpeg 0.8.11 |
||
ffmpeg ffmpeg 0.8.8 |
||
ffmpeg ffmpeg 0.7.11 |
||
ffmpeg ffmpeg 0.7.2 |
||
libav libav 0.6.5 |
||
libav libav 0.5.6 |
||
libav libav 0.7 |
||
libav libav 0.5.7 |
||
libav libav 0.8 |
||
libav libav 0.5.3 |
||
libav libav 0.6.2 |
||
libav libav 0.5 |
||
libav libav 0.7.4 |
||
libav libav 0.7.1 |
||
libav libav 0.8.1 |
||
libav libav 0.5.2 |
||
libav libav 0.5.5 |
||
libav libav 0.6.4 |
||
libav libav 0.6.3 |
||
libav libav 0.7.2 |
||
libav libav 0.8.2 |
||
libav libav 0.5.4 |
||
libav libav 0.7.5 |
||
libav libav 0.7.3 |
||
libav libav 0.6.1 |
||
libav libav 0.6 |
||
libav libav 0.5.1 |