Wind River Support Network

HomeDefectsLIN5-21145
Fixed

LIN5-21145 : Security Advisory - gst-ffmpeg - CVE-2016-2330

Created: Feb 13, 2016    Updated: May 29, 2018
Resolved Date: Mar 16, 2016
Found In Version: 5.0.1.34
Fix Version: 5.0.1.36
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer size, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted .tga file, related to the gif_image_write_image, gif_encode_init, and gif_encode_close functions.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-2330

Other Downloads


Live chat
Online