Wind River Support Network

HomeDefectsLIN1021-1558
Fixed

LIN1021-1558 : Security Advisory - ffmpeg - CVE-2020-20902

Created: Sep 21, 2021    Updated: Oct 18, 2021
Resolved Date: Oct 18, 2021
Found In Version: 10.21.20.1
Fix Version: 10.21.20.6
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Userspace

Description

A CWE-125: Out-of-bounds read vulnerability exists in long_term_filter function in g729postfilter.c in FFmpeg 4.2.1 during computation of the denominator of pseudo-normalized correlation R'(0), that could result in disclosure of information.

CREATE(Triage):(User=admin) [CVE-2020-20902|https://nvd.nist.gov/vuln/detail/CVE-2020-20902]

CVEs


Live chat
Online