Skip to main content

Divide By Zero

CVE-2020-20453

Severity Medium
Score 6.5/10

Summary

FFmpeg versions prior to 3.2.16, 3.3.x, 3.4.x prior to 3.4.9, 3.5-dev, 4.0 prior to 4.1.7, 4.2.x prior to 4.2.5, 4.3.x prior to 4.3.3, 4.4.x prior to 4.4.1, and 4.5-dev are affected by a Divide By Zero issue via "libavcodec/aaccoder.c", which allows a remote malicious user to cause a Denial of Service.

  • LOW
  • NETWORK
  • NONE
  • UNCHANGED
  • NONE
  • LOW
  • NONE
  • HIGH

CWE-369 - Divide By Zero

The product divides a value by zero.

References

Advisory Timeline

  • Published