The render_line function in the vorbis codec (vorbis.c) in libavcodec in FFmpeg prior to 0.9.1 allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Vorbis file, related to a large multiplier. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3893.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ffmpeg ffmpeg 0.7.7 |
||
ffmpeg ffmpeg 0.7.1 |
||
ffmpeg ffmpeg 0.8.6 |
||
ffmpeg ffmpeg |
||
ffmpeg ffmpeg 0.8.5 |
||
ffmpeg ffmpeg 0.8.10 |
||
ffmpeg ffmpeg 0.7.8 |
||
ffmpeg ffmpeg 0.8.7 |
||
ffmpeg ffmpeg 0.7.9 |
||
ffmpeg ffmpeg 0.7.12 |
||
ffmpeg ffmpeg 0.8.11 |
||
ffmpeg ffmpeg 0.8.8 |
||
ffmpeg ffmpeg 0.7.11 |
||
ffmpeg ffmpeg 0.7.2 |