Critical severity9.8NVD Advisory· Published Apr 14, 2017· Updated Jun 17, 2026
CVE-2017-7863
CVE-2017-7863
Description
FFmpeg before 2017-02-04 has an out-of-bounds write caused by a heap-based buffer overflow related to the decode_frame_common function in libavcodec/pngdec.c.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- osv-coords2 versionspkg:rpm/opensuse/ffmpeg-4&distro=openSUSE%20Tumbleweedpkg:rpm/suse/ffmpeg2&distro=SUSE%20Package%20Hub%2012%20SP1
< 4.4-5.2+ 1 more
- (no CPE)range: < 4.4-5.2
- (no CPE)range: < 2.8.11-12.1
Patches
Vulnerability mechanics
References
4- github.com/FFmpeg/FFmpeg/commit/e477f09d0b3619f3d29173b2cd593e17e2d1978envdPatchThird Party Advisory
- www.securityfocus.com/bid/97675nvdThird Party AdvisoryVDB Entry
- bugs.chromium.org/p/oss-fuzz/issues/detailnvdThird Party AdvisoryVDB Entry
- lists.debian.org/debian-lts-announce/2019/02/msg00005.htmlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.