Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In FFmpeg 4.0.1, due to a missing check of a profile value before setting it, the ff_mpeg4_decode_picture_header function in libavcodec/mpeg4videodec.c may trigger a NULL pointer dereference while converting a crafted AVI file to MPEG4, leading to a denial of service.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FFmpeg 安全漏洞
Vulnerability Description
FFmpeg是FFmpeg团队的一套可录制、转换以及流化音视频的完整解决方案。 FFmpeg 4.0.1版本中的libavcodec/mpeg4videodec.c文件的‘ff_mpeg4_decode_picture_header’函数存在安全漏洞,该漏洞源于程序在设置配置文件之前没有对配置文件值进行检测。攻击者可借助特制的AVI文件利用该漏洞造成拒绝服务(空指针逆向引用)。
CVSS Information
N/A
Vulnerability Type
N/A