Unrated severityNVD Advisory· Published Feb 10, 2010· Updated Jun 16, 2026
CVE-2009-4640
CVE-2009-4640
Description
Array index error in vorbis_dec.c in FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Vorbis file that triggers an out-of-bounds read.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
15- scarybeastsecurity.blogspot.com/2009/09/patching-ffmpeg-into-shape.htmlnvdExploit
- secunia.com/advisories/36805nvd
- secunia.com/advisories/38643nvd
- secunia.com/advisories/39482nvd
- www.debian.org/security/2010/dsa-2000nvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.mandriva.com/security/advisoriesnvd
- www.securityfocus.com/bid/36465nvd
- www.ubuntu.com/usn/USN-931-1nvd
- www.vupen.com/english/advisories/2010/0935nvd
- www.vupen.com/english/advisories/2011/1241nvd
- roundup.ffmpeg.org/roundup/ffmpeg/issue1240nvd
News mentions
0No linked articles in our index yet.