FFmpeg CVE-2017-7859 Heap Buffer Overflow Vulnerability

FFmpeg is prone to a heap-based buffer overflow vulnerability.

Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition.

Information

Bugtraq ID: 97663
Class: Boundary Condition Error
CVE: CVE-2017-7859

Remote: Yes
Local: No
Published: Apr 14 2017 12:00AM
Updated: Apr 14 2017 08:05PM
Credit: Unknown.
Vulnerable: FFmpeg FFmpeg 0

Not Vulnerable:

References:

• ffmpeg: Heap-buffer-overflow in ff_h264_slice_context_init (chromium.org)
  
• FFmpeg Homepage (FFmpeg)
  

Source: www.securityfocus.com