CVE-2020-36138

CVE-2020-36138

EPSS 0.9%

An issue was discovered in decode_frame in libavcodec/tiff.c in FFmpeg version 4.3, allows remote attackers to cause a denial of service (DoS).

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/FFmpeg/FFmpeg/commit/292e41ce650a7b5ca5de4ae87fff0d6a90d9fc97 https://lists.ffmpeg.org/pipermail/ffmpeg-devel/2020-November/272001.html https://trac.ffmpeg.org/ticket/8960