CVE-2012-0848

Heap-based buffer overflow in the ws_snd_decode_frame function in libavcodec/ws-snd1.c in FFmpeg 0.9.1 allows remote attackers to cause a denial of service (application crash) via a crafted media file, related to an incorrect calculation, aka "wrong samples count."

🔗 References (10)

• secalert@redhathttp://ffmpeg.org/security.html
• secalert@redhathttp://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=5257743aee0c3982f0079e6553aabc6aa39401d2
• secalert@redhathttp://www.openwall.com/lists/oss-security/2012/02/01/11
• secalert@redhathttp://www.openwall.com/lists/oss-security/2012/02/14/4
• secalert@redhathttps://exchange.xforce.ibmcloud.com/vulnerabilities/78936
• af854a3a-2127-422b-91ae-364da2661108http://ffmpeg.org/security.html
• af854a3a-2127-422b-91ae-364da2661108http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=5257743aee0c3982f0079e6553aabc6aa39401d2
• af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2012/02/01/11
• af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2012/02/14/4
• af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/78936