CVE-2020-35964 log
Source |
|
Severity | Medium |
Remote | No |
Type | Arbitrary code execution |
Description | track_header in libavformat/vividas.c in FFmpeg 4.3.1 has an out-of-bounds write because of incorrect extradata packing. The issue is fixed in FFmpeg version 4.3.2. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-1649 | ffmpeg | 2:4.3.1-4 | 2:4.3.2-1 | Medium | Fixed |
Date | Advisory | Group | Package | Severity | Type |
---|---|---|---|---|---|
13 Mar 2021 | ASA-202103-7 | AVG-1649 | ffmpeg | Medium | arbitrary code execution |
References |
---|
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26622 https://github.com/FFmpeg/FFmpeg/commit/4f0bdff292391cdb96b79b08c56533029166bdc8 |