Description
The decode_ihdr_chunk function in libavcodec/pngdec.c in FFMpeg before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote attackers to cause a denial of service (out-of-bounds heap access) and possibly have other unspecified impact via an IDAT before an IHDR in a PNG file.
References (4)
Core 4
Core References
Mailing List mailing-list
x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2018/12/msg00009.html
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/201603-06
Vendor Advisory x_refsource_confirm
https://www.ffmpeg.org/security.html
Patch x_refsource_confirm
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=79ceaf827be0b070675d4cd0a55c3386542defd8
Scores
EPSS
0.0071
EPSS Percentile
72.5%
Details
CWE
CWE-119
Status
published
Products (12)
ffmpeg/ffmpeg
2.2
ffmpeg/ffmpeg
2.2.4
ffmpeg/ffmpeg
2.3
ffmpeg/ffmpeg
2.3.2
ffmpeg/ffmpeg
2.3.3
ffmpeg/ffmpeg
2.3.4
ffmpeg/ffmpeg
2.3.5
ffmpeg/ffmpeg
2.4
ffmpeg/ffmpeg
2.4.1
ffmpeg/ffmpeg
2.4.2
... and 2 more
Published
Dec 09, 2014
Tracked Since
Feb 18, 2026