CVE-2021-38114 log

Source
Severity Medium
Remote Yes
Type Arbitrary code execution
Description
libavcodec/dnxhddec.c in FFmpeg before version 4.4.1 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868.
Group Package Affected Fixed Severity Status Ticket
AVG-1989 ffmpeg 2:4.4-6 2:4.4.1-1 Medium Fixed
References
https://patchwork.ffmpeg.org/project/ffmpeg/patch/PAXP193MB12624C21AE412BE95BA4D4A4B6F09@PAXP193MB1262.EURP193.PROD.OUTLOOK.COM/
https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=46bbf194c44e49f08bbb028c5b933a901a84a7bd