← Back to CVEs
CVE-2012-0849
N/ADescription
Integer overflow in the ff_j2k_dwt_init function in libavcodec/j2k_dwt.c in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted JPEG2000 image that triggers an incorrect check for a negative value.
CVE Details
CVSS v3.1 ScoreN/A
Published8/27/2012
Last Modified4/11/2025
Sourcenvd
Honeypot Sightings0
Affected Products
ffmpeg:ffmpeg
Weaknesses (CWE)
CWE-189
References
http://ffmpeg.org/security.html(secalert@redhat.com)
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=1f99939a6361e2e6d6788494dd7c682b051c6c34(secalert@redhat.com)
http://www.ffmpeg.org/trac/ffmpeg/ticket/776(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/02/01/11(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2012/02/14/4(secalert@redhat.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/78935(secalert@redhat.com)
http://ffmpeg.org/security.html(af854a3a-2127-422b-91ae-364da2661108)
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=1f99939a6361e2e6d6788494dd7c682b051c6c34(af854a3a-2127-422b-91ae-364da2661108)
http://www.ffmpeg.org/trac/ffmpeg/ticket/776(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/02/01/11(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2012/02/14/4(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/78935(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.