[3.5] ffmpeg: heap overflows (CVE-2017-5024, CVE-2017-5025)
CVE-2017-5024 (arbitrary code execution)
A heap overflow flaw was found in FFmpeg.
Fixed in 3.2.4, 3.1.7
CVE-2017-5025 (arbitrary code execution)
A heap overflow flaw was found in FFmpeg.
Fixed in 3.2.4, 3.1.7
References:
https://ffmpeg.org/security.html
(from redmine: issue id 6870, created on 2017-02-16, closed on 2017-09-05)
- Relations:
- parent #6868 (closed)
- Changesets:
- Revision 66ec3a17 by Sergei Lukin on 2017-02-16T13:32:27Z:
main/ffmpeg: security upgrade to 3.1.7 - fixes #6870
CVE-2017-5024 (arbitrary code execution)
CVE-2017-5025 (arbitrary code execution)