Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The process_frame_obj function in sanm.c in libavcodec in FFmpeg before 1.2.1 does not validate width and height values, which allows remote attackers to cause a denial of service (integer overflow, out-of-bounds array access, and application crash) via crafted LucasArts Smush video data.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FFmpeg ‘process_frame_obj’函数输入验证漏洞
Vulnerability Description
FFmpeg是FFmpeg团队的一套可录制、转换以及流化音视频的完整解决方案。 FFmpeg 1.2.1之前的版本中的libavcodec中的sanm.c中的‘process_frame_obj’函数中存在漏洞,该漏洞源于程序没有验证宽度和高度值。远程攻击者通过特制的LucasArts Smush video数据利用该漏洞造成拒绝服务(整数溢出,越边界数组访问,应用程序崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A