Out-of-bounds Write
CVE-2020-35965
Summary
decode_frame in libavcodec/exr.c in FFmpeg prior to 4.1.7, 4.2.x prior to 4.2.5, 4.3.x prior to 4.3.2, 4.4.x before 4.4 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations.
- LOW
- NETWORK
- NONE
- UNCHANGED
- NONE
- NONE
- NONE
- HIGH
CWE-787 - Out-of-Bounds Write
Out-of-bounds write vulnerability is a memory access bug that allows software to write data past the end or before the beginning of the intended buffer. This may result in the corruption of data, a crash, or arbitrary code execution.
Advisory Timeline
- Published