« List of all CVEs

CVE-2014-4610

Published: 1/14/2020 Last updated: 8/6/2024 Reserved: 6/23/2014

Integer overflow in the get_len function in libavutil/lzo.c in FFmpeg before 0.10.14, 1.1.x before 1.1.12, 1.2.x before 1.2.7, 2.0.x before 2.0.5, 2.1.x before 2.1.5, and 2.2.x before 2.2.4 allows remote attackers to execute arbitrary code via a crafted Literal Run.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (3)

conf-ffmpeg ffmpeg opus

Products affected (2)

Product Vendor Version
n/a n/a < 473aad9ad57ff760005377e6f45a2ad4210e08ce
n/a n/a < 17a58caf3863163c4a84a218a9649be2c8061443

References (12)