CVE-2013-0868

EPSS 0.89%

Published: 11/23/2013Modified: 4/28/2026

Description

libavcodec/huffyuvdec.c in FFmpeg before 1.1.2 allows remote attackers to have an unspecified impact via crafted Huffyuv data, related to an out-of-bounds write and (1) unchecked return codes from the init_vlc function and (2) "len==0 cases."

Affected packages (1)

Debian/ffmpegfrom 0, < 7:2.4.1-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-0868