CVE-2015-6818

FFmpeg < 2.7.2 - Denial of Service via Duplicate IHDR Chunk in PNG Image

Title source: llm

Description

The decode_ihdr_chunk function in libavcodec/pngdec.c in FFmpeg before 2.7.2 does not enforce uniqueness of the IHDR (aka image header) chunk in a PNG image, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted image with two or more of these chunks.

References (5)

Core 5

Core References

Vendor Advisory vendor-advisory x_refsource_ubuntu

http://www.ubuntu.com/usn/USN-2944-1

Mailing List mailing-list x_refsource_mlist

https://lists.debian.org/debian-lts-announce/2018/12/msg00009.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1033483

Patch x_refsource_confirm

http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=47f4e2d8960ca756ca153ab8e3e93d80449b8c91

Various Sources x_refsource_confirm

http://ffmpeg.org/security.html

Scores

EPSS 0.0089

EPSS Percentile 75.7%

Details

CWE

CWE-17

Status published

Products (2)

canonical/ubuntu_linux 12.04

ffmpeg/ffmpeg < 2.7.1

Published Sep 06, 2015

Tracked Since Feb 18, 2026