Candidate: CVE-2013-7020
PublicDate: 2013-12-09 16:36:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7020
 https://github.com/FFmpeg/FFmpeg/commit/b05cd1ea7e45a836f7f6071a716c38bb30326e0f
 http://www.openwall.com/lists/oss-security/2013/12/08
Description:
 The read_header function in libavcodec/ffv1dec.c in FFmpeg before 2.1 does
 not properly enforce certain bit-count and colorspace constraints, which
 allows remote attackers to cause a denial of service (out-of-bounds array
 access) or possibly have unspecified other impact via crafted FFV1 data.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_ffmpeg:
upstream_ffmpeg: needs-triage
lucid_ffmpeg: ignored (reached end-of-life)
precise_ffmpeg: DNE
quantal_ffmpeg: DNE
raring_ffmpeg: DNE
saucy_ffmpeg: DNE
devel_ffmpeg: DNE