The get_siz function in libavcodec/jpeg2000dec.c in FFmpeg before 2.1 does not ensure the expected sample separation, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted JPEG2000 data.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2013-12-09T11:00:00

Updated: 2024-08-06T17:53:45.942Z

Reserved: 2013-12-08T00:00:00

Link: CVE-2013-7016

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2013-12-09T16:36:49.283

Modified: 2024-11-21T02:00:10.343

Link: CVE-2013-7016

cve-icon Redhat

No data.