Wind River Support Network

HomeDefectsLIN6-2668

Fixed

LIN6-2668 : Security Advisory - ffmpeg - CVE-2013-3674

Created: Jun 17, 2013 Updated: Dec 3, 2018

Resolved Date: Dec 9, 2013

Previous ID: LIN5-4726

Found In Version: 6.0

Fix Version: 6.0.0.1

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

The cdg_decode_frame function in cdgraphics.c in libavcodec in FFmpeg before 1.2.1 does not validate the presence of non-header data in a buffer, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted CD Graphics Video data.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-3674

Workaround

Unknown

Steps to Reproduce

Unknown

Other Downloads

Wind River Linux 6.0.0.1
Wind River Linux 6.0.0.2
Wind River Linux 6.0.0.3
Wind River Linux 6.0.0.5
Wind River Linux 6.0.0.6
Wind River Linux 6.0.0.7
Wind River Linux 6.0.0.8
Wind River Linux 6.0.0.9
Wind River Linux 6.0.0.10
Wind River Linux 6.0.0.11
Wind River Linux 6.0.0.12
Wind River Linux 6.0.0.13
Wind River Linux 6.0.0.14
Wind River Linux 6.0.0.15
Wind River Linux 6.0.0.16
Wind River Linux 6.0.0.17
Wind River Linux 6.0.0.18
Wind River Linux 6.0.0.19
Wind River Linux 6.0.0.20
Wind River Linux 6.0.0.21
Wind River Linux 6.0.0.22
Wind River Linux 6.0.0.23
Wind River Linux 6.0.0.24
Wind River Linux 6.0.0.25
Wind River Linux 6.0.0.26
Wind River Linux 6.0.0.27
Wind River Linux 6.0.0.28
Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38