---

CVE-2021-38114 - log back

CVE-2021-38114 edited at 07 Nov 2021 12:56:53
Description	- libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868. + libavcodec/dnxhddec.c in FFmpeg before version 4.4.1 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868.
References	https://patchwork.ffmpeg.org/project/ffmpeg/patch/PAXP193MB12624C21AE412BE95BA4D4A4B6F09@PAXP193MB1262.EURP193.PROD.OUTLOOK.COM/ - https://github.com/FFmpeg/FFmpeg/commit/7150f9575671f898382c370acae35f9087a30ba1 + https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=46bbf194c44e49f08bbb028c5b933a901a84a7bd

CVE-2021-38114 edited at 05 Aug 2021 08:38:53
Severity	- Unknown + Medium
Remote	- Unknown + Remote
Type	- Unknown + Arbitrary code execution
Description	+ libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868.
References	+ https://patchwork.ffmpeg.org/project/ffmpeg/patch/PAXP193MB12624C21AE412BE95BA4D4A4B6F09@PAXP193MB1262.EURP193.PROD.OUTLOOK.COM/ + https://github.com/FFmpeg/FFmpeg/commit/7150f9575671f898382c370acae35f9087a30ba1

CVE-2021-38114 created at 05 Aug 2021 08:37:36
Severity	+ Unknown
Remote	+ Unknown
Type	+ Unknown
Description
References
Notes