CVE-2017-14169 in FFmpeg信息

摘要 (英语)

In the mxf_read_primer_pack function in libavformat/mxfdec.c in FFmpeg 3.3.3, an integer signedness error might occur when a crafted file, which claims a large "item_num" field such as 0xffffffff, is provided. As a result, the variable "item_num" turns negative, bypassing the check for a large value.

预定

2017-09-07

披露

2017-09-07

条目

VulDB provides additional information and datapoints for this CVE:

标识符漏洞CWE可利用对策CVE
106185FFmpeg mxfdec.c mxf_read_primer_pack 权限提升20未定义官方修复CVE-2017-14169

描述

CPE

CWE

CVSS

漏洞利用

历史

差异

连接

威胁情报

API JSON

API XML

API CSV

上一步一览下一步

Do you need the next level of professionalism?

Upgrade your account now!