CVE-2020-13904 — Use After Free in Ffmpeg

CWE-416 — Use After Free7 documents6 sources

Severity

5.5MEDIUMNVD

OSV7.5

EPSS

0.5%

top 35.18%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Ffmpeg Canonical Ubuntu Linux Debian Linux

Timeline

PublishedJun 7

Latest updateMay 24

Description

FFmpeg 2.8 and 4.2.3 has a use-after-free via a crafted EXTINF duration in an m3u8 file because parse_playlist in libavformat/hls.c frees a pointer, and later that pointer is accessed in av_probe_input_format3 in libavformat/format.c.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶Debianffmpeg/ffmpeg< 7:4.3.1-1+3

▶Ubuntuffmpeg/ffmpeg< 7:2.8.17-0ubuntu0.1+2

▶NVDffmpeg/ffmpeg2.8, 4.2.3+1

Also affects: Debian Linux 10.0, 9.0, Ubuntu Linux 16.04, 18.04, 20.04

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-8gvr-7h6w-q2cv: FFmpeg 4↗2022-05-24

▶

OSV

ffmpeg vulnerabilities↗2020-07-22

▶

CVEList

CVE-2020-13904: FFmpeg 2↗2020-06-07

▶

OSV

CVE-2020-13904: FFmpeg 2↗2020-06-07

▶

📋Vendor Advisories

Ubuntu

FFmpeg vulnerabilities↗2020-07-22

▶

Debian

CVE-2020-13904: ffmpeg - FFmpeg 2.8 and 4.2.3 has a use-after-free via a crafted EXTINF duration in an m3...↗2020

▶