The gmc_mmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly validate widths and heights, which allows remote attackers to cause a denial of service (integer signedness error and out-of-array read) via a crafted MPEG file.
{
"source": "CPE_FIELD",
"extracted_events": [
{
"introduced": "0"
},
{
"last_affected": "3.4"
}
],
"cpe": "cpe:2.3:a:ffmpeg:ffmpeg:3.4:*:*:*:*:*:*:*"
}{
"source": "CPE_FIELD",
"extracted_events": [
{
"introduced": "0"
},
{
"last_affected": "3.4"
}
],
"cpe": "cpe:2.3:a:ffmpeg:ffmpeg:3.4:*:*:*:*:*:*:*"
}