Wind River Support Network

HomeDefectsLIN1021-6853
Fixed

LIN1021-6853 : Security Advisory - ffmpeg - CVE-2023-47470

Created: Nov 17, 2023    Updated: Jan 26, 2024
Resolved Date: Jan 23, 2024
Found In Version: 10.21.20.1
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

Buffer Overflow vulnerability in Ffmpeg before github commit 4565747056a11356210ed8edcecb920105e40b60 allows a remote attacker to achieve an out-of-array write, execute arbitrary code, and cause a denial of service (DoS) via the ref_pic_list_struct function in libavcodec/evc_ps.c

CREATE(Triage):(User=admin) CVE-2023-47470 (https://nvd.nist.gov/vuln/detail/CVE-2023-47470)
Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube