FFmpeg Denial of Service Vulnerability (CVE-2016-2213)
Data de publicação: 07 abril 2016
Schweregrad: : Alto
Identificador(es) CVE: : CVE-2016-2213
Data do informe: 07 abril 2016
Descrição
The vulnerability found in jpeg2000_decode_tile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.6 may allow remote attackers to cause a denial of service. It does this using a crafted JPEG 2000 data. Trend Micro researcher Lucas Leong is credited for discovery and reporting of this vulnerability.
Solução
Alteração: : https://www.ffmpeg.org/security.html
Software infectado e versão:
- FFmpeg before 2.8.6