Vulnerability & Exploit Database

Displaying all 4 entries

Results for: CVE-2017-14169 Back to search

SUSE: CVE-2017-14169: SUSE Linux Security Advisory Vulnerability

  • Severity: 7
  • Published: September 07, 2017

In the mxf_read_primer_pack function in libavformat/mxfdec.c in FFmpeg 3.3.3, an integer signedness error might occur when a crafted file, which claims a large "item_num" field such as 0xffffffff, is provided. As a result, the variable "item_num" turns negative, bypassing the check for a large value.

FFmpeg: CVE-2017-14169: Improper Input Validation Vulnerability

  • Severity: 7
  • Published: September 07, 2017

In the mxf_read_primer_pack function in libavformat/mxfdec.c in FFmpeg 3.3.3, an integer signedness error might occur when a crafted file, which claims a large "item_num" field such as 0xffffffff, is provided. As a result, the variable "item_num" turns negative, bypassing the check for a large value.

Debian: CVE-2017-14169: ffmpeg -- security update Vulnerability

  • Severity: 7
  • Published: September 07, 2017

In the mxf_read_primer_pack function in libavformat/mxfdec.c in FFmpeg 3.3.3, an integer signedness error might occur when a crafted file, which claims a large "item_num" field such as 0xffffffff, is provided. As a result, the variable "item_num" turns negative, bypassing the check for a large value.