CVE-2013-0867

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2013-0867

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2013-0867.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2013-0867

Downstream

DEBIAN-CVE-2013-0867

Published

2013-11-23T18:55:04Z

Modified

2026-04-10T03:42:40.333764Z

Summary

[none]

Details

The decodesliceheader function in libavcodec/h264.c in FFmpeg before 1.1.2 does not properly check when the pixel format changes, which allows remote attackers to have unspecified impact via crafted H.264 video data, related to an out-of-bounds array access.

References

https://security.gentoo.org/glsa/201603-06
http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=3ef1538121fa6daeb1767510f1d4ae2c306c9fec
http://www.ffmpeg.org/security.html

CVE-2013-0867

Affected packages