Unrated severityNVD Advisory· Published Aug 10, 2021· Updated Aug 4, 2024
CVE-2020-21697
CVE-2020-21697
Description
A heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service (DOS) via a crafted avi file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
22- FFmpeg/FFmpegdescription
- osv-coords20 versionspkg:rpm/opensuse/ffmpeg&distro=openSUSE%20Leap%2015.3pkg:rpm/suse/ffmpeg&distro=SUSE%20Enterprise%20Storage%206pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-ESPOSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP1-LTSSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP2pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP2pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP3pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-BCLpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP2pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP3pkg:rpm/suse/ffmpeg&distro=SUSE%20Manager%20Proxy%204.0pkg:rpm/suse/ffmpeg&distro=SUSE%20Manager%20Retail%20Branch%20Server%204.0pkg:rpm/suse/ffmpeg&distro=SUSE%20Manager%20Server%204.0
< 3.4.2-11.8.2+ 19 more
- (no CPE)range: < 3.4.2-11.8.2
- (no CPE)range: < 3.4.2-4.34.2
- (no CPE)range: < 3.4.2-4.34.2
- (no CPE)range: < 3.4.2-4.34.2
- (no CPE)range: < 3.4.2-4.34.2
- (no CPE)range: < 3.4.2-4.34.2
- (no CPE)range: < 3.4.2-11.8.2
- (no CPE)range: < 3.4.2-11.8.2
- (no CPE)range: < 3.4.2-11.8.2
- (no CPE)range: < 3.4.2-11.8.2
- (no CPE)range: < 3.4.2-4.34.2
- (no CPE)range: < 3.4.2-4.34.2
- (no CPE)range: < 3.4.2-4.34.2
- (no CPE)range: < 3.4.2-4.34.2
- (no CPE)range: < 3.4.2-4.34.2
- (no CPE)range: < 3.4.2-11.8.2
- (no CPE)range: < 3.4.2-11.8.2
- (no CPE)range: < 3.4.2-4.34.2
- (no CPE)range: < 3.4.2-4.34.2
- (no CPE)range: < 3.4.2-4.34.2
Patches
Vulnerability mechanics
References
2- www.debian.org/security/2021/dsa-4998mitrevendor-advisoryx_refsource_DEBIAN
- trac.ffmpeg.org/ticket/8188mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.