CVE-2017-7865 in FFmpeg
Summary
FFmpeg before 2017-01-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the ipvideo_decode_block_opcode_0xA function in libavcodec/interplayvideo.c and the avcodec_align_dimensions2 function in libavcodec/utils.c.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Reservation
04/14/2017
Disclosure
04/14/2017
Status
Confirmed
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 99852 | FFmpeg interplayvideo.c avcodec_align_dimensions2 out-of-bounds write | 787 | Not defined | Official fix | CVE-2017-7865 |