1
Candidate: CVE-2017-14222
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14222
5
https://github.com/FFmpeg/FFmpeg/commit/9cb4eb772839c5e1de2855d126bf74ff16d13382
7
In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack of
8
an EOF (End of File) check might cause huge CPU and memory consumption.
9
When a crafted MOV file, which claims a large "item_count" field in the
10
header but does not contain sufficient backing data, is provided, the loop
11
would consume huge CPU and memory resources, since there is no EOF check
21
upstream_libav: needs-triage
22
precise/esm_libav: DNE
23
trusty_libav: needs-triage
24
vivid/ubuntu-core_libav: DNE
32
upstream_ffmpeg: needs-triage
33
precise/esm_ffmpeg: DNE
35
vivid/ubuntu-core_ffmpeg: DNE
36
xenial_ffmpeg: released (7:2.8.14-0ubuntu0.16.04.1)
37
zesty_ffmpeg: ignored (reached end-of-life)
38
artful_ffmpeg: needs-triage
39
bionic_ffmpeg: needs-triage
40
devel_ffmpeg: needs-triage