CVE-2020-22017 | Severity.io

Description

A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at ff_fill_rectangle in libavfilter/drawutils.c, which might lead to memory corruption and other potential consequences.

Related CPE's

ffmpeg

Vulnerable

Vulnerable

References

https://cwe.mitre.org/data/definitions/122.html

Technical Description

https://trac.ffmpeg.org/ticket/8309

ExploitIssue TrackingVendor Advisory

https://www.debian.org/security/2021/dsa-4990

Third Party Advisory

https://cwe.mitre.org/data/definitions/122.html

Technical Description

https://trac.ffmpeg.org/ticket/8309

ExploitIssue TrackingVendor Advisory

https://www.debian.org/security/2021/dsa-4990

Third Party Advisory

Weaknesses

[email protected]

Primary

CWE-787

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.8 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-05-27T17:15:08.027Z

4 years ago

Last modified

2024-11-21T04:13:00.960Z

1 year ago