CVE-2012-0847Improper Restriction of Operations within the Bounds of a Memory Buffer in Ffmpeg

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.6%
top 30.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
FfmpegDebian Ffmpeg
Timeline
PublishedAug 20
Latest updateMay 17

Description

Heap-based buffer overflow in the avfilter_filter_samples function in libavfilter/avfilter.c in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service (application crash) via a crafted media file.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

NVDffmpeg/ffmpeg0.9+13
debiandebian/ffmpeg

🔴Vulnerability Details

1
GHSA
GHSA-crw8-qrfc-x6pv: Heap-based buffer overflow in the avfilter_filter_samples function in libavfilter/avfilter2022-05-17

📋Vendor Advisories

1
Debian
CVE-2012-0847: ffmpeg - Heap-based buffer overflow in the avfilter_filter_samples function in libavfilte...2012