Heap-based buffer overflow in the vqa_decode_chunk function in the VQA codec (vqavideo.c) in libavcodec in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VQA media file in which the image size is not a multiple of the block size.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: canonical
Published: 2012-08-20T18:00:00
Updated: 2024-08-06T18:45:25.955Z
Reserved: 2012-02-01T00:00:00
Link: CVE-2012-0947
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-08-20T18:55:02.950
Modified: 2023-11-07T02:10:05.993
Link: CVE-2012-0947
Redhat
No data.