Buffer overflow in Ffmpeg

CVE-2011-1931

sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the bounds of an unspeci…

Vulnerability class: Buffer Overflow

EPSS: 0.023 (85.2th percentile) — read the EPSS interpretation.

Affected products

Ffmpeg — versions 0.3, 0.3.1, 0.3.2
Ffmpeg Libavcodec
Libav — versions 0.3, 0.3.1, 0.3.2
Videolan Vlc_media_player — versions 0.1.99b, 0.1.99e, 0.1.99f
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

secalert@redhat.com (x_refsource_CONFIRM, Patch)
20110427 NGS00068 Patch Notification: LibAVCodec AMV Out of Array Write (mailing-list, x_refsource_BUGTRAQ)
secalert@redhat.com (x_refsource_CONFIRM)
8299 (x_refsource_SREASON, third-party-advisory)
47602 (vdb-entry, x_refsource_BID)