The VC-2 Video Compression encoder in FFmpeg 3.0 and 3.4 allows remote attackers to cause a denial of service (out-of-bounds read) because of incorrect buffer padding for non-Haar wavelets, related to libavcodec/vc2enc.c and libavcodec/vc2enc_dwt.c.
[ { "signature_type": "Line", "deprecated": false, "source": "https://github.com/ffmpeg/ffmpeg/commit/94e538aebbc9f9c529e8b1f2eda860cfb8c473b1", "signature_version": "v1", "target": { "file": "libavcodec/vc2enc_dwt.h" }, "digest": { "threshold": 0.9, "line_hashes": [ "135818594614901672732146968676385056856", "248125806350867737154119266375215529082", "186133846001445467985421406694757432229", "63482696116901264408691652824731083733", "257204787779104618254370894359176384064", "175904524801985787039735545992937190833", "99626077389251573496303213197947429264", "237349011077517403735766500451654610691" ] }, "id": "CVE-2017-16840-094792fd" }, { "signature_type": "Function", "deprecated": false, "source": "https://github.com/ffmpeg/ffmpeg/commit/94e538aebbc9f9c529e8b1f2eda860cfb8c473b1", "signature_version": "v1", "target": { "function": "vc2_encode_init", "file": "libavcodec/vc2enc.c" }, "digest": { "function_hash": "335363604367117808748188825808816569480", "length": 5192.0 }, "id": "CVE-2017-16840-28a4c539" }, { "signature_type": "Line", "deprecated": false, "source": "https://github.com/ffmpeg/ffmpeg/commit/94e538aebbc9f9c529e8b1f2eda860cfb8c473b1", "signature_version": "v1", "target": { "file": "libavcodec/vc2enc.c" }, "digest": { "threshold": 0.9, "line_hashes": [ "197305430240602816591644314383776055292", "67111441144557061660701597356442478488", "137925606817059743193280873001912113898", "74440525678306990342453025535523734246", "172298131143932485841285047965883868080" ] }, "id": "CVE-2017-16840-465c152d" }, { "signature_type": "Function", "deprecated": false, "source": "https://github.com/ffmpeg/ffmpeg/commit/94e538aebbc9f9c529e8b1f2eda860cfb8c473b1", "signature_version": "v1", "target": { "function": "ff_vc2enc_init_transforms", "file": "libavcodec/vc2enc_dwt.c" }, "digest": { "function_hash": "268327022686470612313326723529605010299", "length": 323.0 }, "id": "CVE-2017-16840-4786e35c" }, { "signature_type": "Function", "deprecated": false, "source": "https://github.com/ffmpeg/ffmpeg/commit/94e538aebbc9f9c529e8b1f2eda860cfb8c473b1", "signature_version": "v1", "target": { "function": "ff_vc2enc_free_transforms", "file": "libavcodec/vc2enc_dwt.c" }, "digest": { "function_hash": "46399139728623671936880676747376363104", "length": 69.0 }, "id": "CVE-2017-16840-67d2348c" }, { "signature_type": "Line", "deprecated": false, "source": "https://github.com/ffmpeg/ffmpeg/commit/94e538aebbc9f9c529e8b1f2eda860cfb8c473b1", "signature_version": "v1", "target": { "file": "libavcodec/vc2enc_dwt.c" }, "digest": { "threshold": 0.9, "line_hashes": [ "53795763754123074629229590708092510091", "80350097047626985864507570491897652593", "135965666273098394188915963956646392453", "303737012275246568064756864032559436743", "40117645717818657865657395139437859457", "79147293561506676442283515161020790479", "119905777158287688855604005386924491997", "24706128928333116285719656482873298185", "260918295490888607884998935979156143138", "300707498807955112852161934854568824612", "61036244475108607892019035979117532090", "316919907739127694507247972126559813512", "180660775057073708108545038031223728538" ] }, "id": "CVE-2017-16840-a87bf187" } ]