FFmpeg 2.8 and 4.2.3 has a use-after-free via a crafted EXTINF duration in an m3u8 file because parse_playlist in libavformat/hls.c frees a pointer, and later that pointer is accessed in av_probe_input_format3 in libavformat/format.c.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
ffmpeg ffmpeg 2.8 |
||
ffmpeg ffmpeg 4.2.3 |
||
canonical ubuntu linux 18.04 |
||
canonical ubuntu linux 20.04 |
||
canonical ubuntu linux 16.04 |
||
debian debian linux 9.0 |
||
debian debian linux 10.0 |
Vulmon