Wind River Support Network

HomeDefectsLIN1019-6604
Fixed

LIN1019-6604 : Security Advisory - ffmpeg - CVE-2020-22015

Created: May 26, 2021    Updated: Sep 9, 2021
Resolved Date: Aug 30, 2021
Found In Version: 10.19.45.1
Fix Version: 10.19.45.19
Severity: Standard
Applicable for: Wind River Linux LTS 19
Component/s: Userspace

Description

Buffer Overflow vulnerability in FFmpeg 4.2 in mov_write_video_tag due to the out of bounds in libavformat/movenc.c, which could let a remote malicious user obtain sensitive information, cause a Denial of Service, or execute arbitrary code.

CREATE(Triage):(User=admin) [CVE-2020-22015|https://nvd.nist.gov/vuln/detail/CVE-2020-22015]

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube