---

CVE-2020-35964 - log back

CVE-2020-35964 edited at 05 Mar 2021 10:12:28
Description	- track_header in libavformat/vividas.c in FFmpeg 4.3.1 has an out-of-bounds write because of incorrect extradata packing. + track_header in libavformat/vividas.c in FFmpeg 4.3.1 has an out-of-bounds write because of incorrect extradata packing. The issue is fixed in FFmpeg version 4.3.2.
References	https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26622 - https://github.com/FFmpeg/FFmpeg/commit/27a99e2c7d450fef15594671eef4465c8a166bd7 + https://github.com/FFmpeg/FFmpeg/commit/4f0bdff292391cdb96b79b08c56533029166bdc8

CVE-2020-35964 edited at 04 Jan 2021 10:32:16
Severity	- Unknown + Medium
Remote	- Unknown + Local
Type	- Unknown + Arbitrary code execution
Description	+ track_header in libavformat/vividas.c in FFmpeg 4.3.1 has an out-of-bounds write because of incorrect extradata packing.
References	+ https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26622 + https://github.com/FFmpeg/FFmpeg/commit/27a99e2c7d450fef15594671eef4465c8a166bd7
Notes

CVE-2020-35964 created at 04 Jan 2021 10:31:02