VYPR
← All advisories
Unrated severityNVD Advisory· Published Aug 20, 2012· Updated Apr 29, 2026

CVE-2012-0852

CVE-2012-0852

Description

The adpcm_decode_frame function in adpcm.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an ADPCM file with the number of channels not equal to two.

Affected products

38
  • FFmpeg/Ffmpeg14 versions
    cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:*+ 13 more
    • cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:*range: <=0.9
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.11:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.12:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.7:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.8:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.9:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.8.10:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.8.11:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.8.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.8.6:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.8.7:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.8.8:*:*:*:*:*:*:*
  • Libav/Libav24 versions
    cpe:2.3:a:libav:libav:0.5:*:*:*:*:*:*:*+ 23 more
    • cpe:2.3:a:libav:libav:0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.3:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.4:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.5:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.6:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.7:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.6.3:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.6.4:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.7:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.7.3:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.7.4:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.7.5:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.8:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.8.1:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.8.2:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.8:beta2:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

8

News mentions

0

No linked articles in our index yet.