CVE Reference: CVE-2012-2774

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2012-2774

Description:
The ff_MPV_frame_start function in libavcodec/mpegvideo.c in FFmpeg before 0.11 allows remote attackers to cause a denial of service (memory corruption) via unspecified vectors, related to starting "a frame outside SETUP state."

CVE Status:
Candidate

References:

SAID
  Secunia Advisory: SA50468

MLIST
  http://www.openwall.com/lists/oss-security/2012/09/02/4
  http://www.openwall.com/lists/oss-security/2012/08/31/3

CONFIRM
  http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=59a4b73531428d2f420b4dad545172c8483ced0f
  http://ffmpeg.org/security.html

BID
  55355


Return to the previous page.