Medium severity6.5NVD Advisory· Published Dec 12, 2017· Updated Jun 17, 2026
CVE-2017-17555
CVE-2017-17555
Description
The swri_audio_convert function in audioconvert.c in FFmpeg libswresample through 3.0.101, as used in FFmpeg 3.4.1, aubio 0.4.6, and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted audio file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11cpe:2.3:a:ffmpeg:libswresample:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ffmpeg:libswresample:*:*:*:*:*:*:*:*range: <=3.0.101
- (no CPE)range: <=3.0.101
- osv-coords6 versionspkg:rpm/opensuse/ffmpeg-4&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/ffmpeg-4&distro=openSUSE%20Tumbleweedpkg:rpm/suse/ffmpeg-4&distro=SUSE%20Package%20Hub%2012%20SP2pkg:rpm/suse/ffmpeg-4&distro=SUSE%20Package%20Hub%2015pkg:rpm/suse/ffmpeg-4&distro=SUSE%20Package%20Hub%2015%20SP1pkg:rpm/suse/ffmpeg&distro=SUSE%20Package%20Hub%2012%20SP2
< 4.2.1-bp151.5.3.1+ 5 more
- (no CPE)range: < 4.2.1-bp151.5.3.1
- (no CPE)range: < 4.4-5.2
- (no CPE)range: < 4.2.1-bp151.5.3.1
- (no CPE)range: < 4.2.1-bp151.5.3.1
- (no CPE)range: < 4.2.1-bp151.5.3.1
- (no CPE)range: < 3.4.2-14.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.