libavcodec/jpeg2000dec.c in FFmpeg before 2.1 does not...
Moderate severity
Unreviewed
Published
May 17, 2022
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Description
Published by the National Vulnerability Database
Dec 9, 2013
Published to the GitHub Advisory Database
May 17, 2022
Last updated
Jan 27, 2023
libavcodec/jpeg2000dec.c in FFmpeg before 2.1 does not ensure the use of valid code-block dimension values, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted JPEG2000 data.
References