Vulnerability Description
In the mxf_read_primer_pack function in libavformat/mxfdec.c in FFmpeg 3.3.3 -> 2.4, an integer signedness error might occur when a crafted file, which claims a large "item_num" field such as 0xffffffff, is provided. As a result, the variable "item_num" turns negative, bypassing the check for a large value.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ffmpeg | Ffmpeg | 3.3.3 |
| Debian | Debian Linux | 8.0 |
Related Weaknesses (CWE)
References
- http://www.debian.org/security/2017/dsa-3996Third Party Advisory
- http://www.securityfocus.com/bid/100692Third Party AdvisoryVDB Entry
- https://github.com/FFmpeg/FFmpeg/commit/9d00fb9d70ee8c0cc7002b89318c5be00f1bbdadIssue TrackingPatchThird Party Advisory
- https://github.com/FFmpeg/FFmpeg/commit/a4e85b2e1c8d5b4bf0091157bbdeb0e457fb7b8f
- https://lists.debian.org/debian-lts-announce/2019/02/msg00005.htmlThird Party Advisory
- http://www.debian.org/security/2017/dsa-3996Third Party Advisory
- http://www.securityfocus.com/bid/100692Third Party AdvisoryVDB Entry
- https://github.com/FFmpeg/FFmpeg/commit/9d00fb9d70ee8c0cc7002b89318c5be00f1bbdadIssue TrackingPatchThird Party Advisory
- https://github.com/FFmpeg/FFmpeg/commit/a4e85b2e1c8d5b4bf0091157bbdeb0e457fb7b8f
- https://lists.debian.org/debian-lts-announce/2019/02/msg00005.htmlThird Party Advisory
FAQ
What is CVE-2017-14169?
CVE-2017-14169 is a vulnerability with a CVSS score of 8.8 (HIGH). In the mxf_read_primer_pack function in libavformat/mxfdec.c in FFmpeg 3.3.3 -> 2.4, an integer signedness error might occur when a crafted file, which claims a large "item_num" field such as 0xffffff...
How severe is CVE-2017-14169?
CVE-2017-14169 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-14169?
Check the references section above for vendor advisories and patch information. Affected products include: Ffmpeg Ffmpeg, Debian Debian Linux.