Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2021-38171

adts_decode_extradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the init_get_bits return value, which is a necessary step because the second argument to init_get_bits can be crafted.

Related bugs and status

CVE-2021-38171 (Candidate) is related to these bugs:

Bug #1970674: New bug fix releases 3.4.11, 4.2.7 and 4.4.2

		In	Importance	Status
1970674	New bug fix releases 3.4.11, 4.2.7 and 4.4.2	ffmpeg (Ubuntu)	Undecided	Fix Released
1970674	New bug fix releases 3.4.11, 4.2.7 and 4.4.2	ffmpeg (Ubuntu Focal)	Undecided	Fix Released
1970674	New bug fix releases 3.4.11, 4.2.7 and 4.4.2	ffmpeg (Ubuntu Jammy)	Undecided	Fix Released
1970674	New bug fix releases 3.4.11, 4.2.7 and 4.4.2	ffmpeg (Ubuntu Impish)	Undecided	Fix Released
1970674	New bug fix releases 3.4.11, 4.2.7 and 4.4.2	ffmpeg (Ubuntu Bionic)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://github.com/FFm...
MISC: https://patchwork.ffmp...
DEBIAN: DSA-4990
DEBIAN: DSA-4998
MLIST: [debian-lts-announce] ...
GENTOO: GLSA-202312-14