CVE-2013-4265

Published: 11/23/2013 Last updated: 8/6/2024 Reserved: 6/12/2013

The av_reallocp_array function in libavutil/mem.c in FFmpeg before 2.0.1 has an unspecified impact and remote vectors related to a "wrong return code" and a resultant NULL pointer dereference.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (3)

conf-ffmpeg ffmpeg opus

Products affected (1)

Product	Vendor	Version
n/a	n/a	< f0e49fd13afe9dea7a09a1c9537fd00cea22badb

References (16)

http://www.openwall.com/lists/oss-security/2013/08/21/11
http://www.ffmpeg.org/security.html
http://www.openwall.com/lists/oss-security/2013/08/21/11
http://www.ffmpeg.org/security.html
https://security.gentoo.org/glsa/201603-06
https://github.com/FFmpeg/FFmpeg/commit/c94f9e854228e0ea00e1de8769d8d3f7cab84a55
http://www.openwall.com/lists/oss-security/2013/08/21/11
http://www.ffmpeg.org/security.html
https://security.gentoo.org/glsa/201603-06
https://github.com/FFmpeg/FFmpeg/commit/c94f9e854228e0ea00e1de8769d8d3f7cab84a55
https://security.gentoo.org/glsa/201603-06
https://github.com/FFmpeg/FFmpeg/commit/c94f9e854228e0ea00e1de8769d8d3f7cab84a55
http://www.openwall.com/lists/oss-security/2013/08/21/11
http://www.ffmpeg.org/security.html
https://security.gentoo.org/glsa/201603-06
https://github.com/FFmpeg/FFmpeg/commit/c94f9e854228e0ea00e1de8769d8d3f7cab84a55