CVE-2017-7866

CVE-2017-7866

EPSS 2.5%

FFmpeg before 2017-01-23 has an out-of-bounds write caused by a stack-based buffer overflow related to the decode_zbuf function in libavcodec/pngdec.c.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=444 https://github.com/FFmpeg/FFmpeg/commit/e371f031b942d73e02c090170975561fabd5c264 http://www.securityfocus.com/bid/97664