← Back to CVEs
CVE-2017-9608
N/ADescription
The dnxhd decoder in FFmpeg before 3.2.6, and 3.3.x before 3.3.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted mov file.
CVE Details
CVSS v3.1 ScoreN/A
Published12/27/2017
Last Modified4/20/2025
Sourcenvd
Honeypot Sightings0
Affected Products
ffmpeg:ffmpeg
Weaknesses (CWE)
CWE-476
References
http://www.openwall.com/lists/oss-security/2017/08/14/1(cve@mitre.org)
http://www.openwall.com/lists/oss-security/2017/08/15/8(cve@mitre.org)
http://www.securityfocus.com/bid/100348(cve@mitre.org)
https://www.debian.org/security/2017/dsa-3957(cve@mitre.org)
http://www.openwall.com/lists/oss-security/2017/08/14/1(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2017/08/15/8(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/100348(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/FFmpeg/FFmpeg/commit/0a709e2a10b8288a0cc383547924ecfe285cef89(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/FFmpeg/FFmpeg/commit/31c1c0b46a7021802c3d1d18039fca30dba5a14e(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/FFmpeg/FFmpeg/commit/611b35627488a8d0763e75c25ee0875c5b7987dd(af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2017/dsa-3957(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.