Out-of-bounds array access vulnerability in FFmpeg's pngenc.c

Out-of-bounds array access vulnerability in FFmpeg's pngenc.c

CVE-2016-2327 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

libavcodec/pngenc.c in FFmpeg before 2.8.5 uses incorrect line sizes in certain row calculations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted .avi file, related to the apng_encode_frame and encode_apng functions.

Learn more about our Web Application Penetration Testing UK.