The dpcm_decode_frame function in libavcodec/dpcm.c in FFmpeg before 0.9.1 does not use the proper pointer after an audio API change, which allows remote attackers to cause a denial of service (application crash) via unspecified vectors, which triggers a heap-based buffer overflow.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2012-08-20T19:00:00Z
Updated: 2024-09-16T21:57:02.411Z
Reserved: 2012-01-19T00:00:00Z
Link: CVE-2012-0854
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-08-20T19:55:05.043
Modified: 2024-11-21T01:35:51.040
Link: CVE-2012-0854
Redhat
No data.