CVE-2011-2161

Name of the Vulnerable Software and Affected Versions FFmpeg versions prior to 0.5.4

Description The issue allows remote attackers to cause a denial of service, resulting in an application crash, by providing a specially crafted APE file that contains a header but no frames. This is due to a problem in the ape read header function in ape.c in libavformat.

Recommendations For versions prior to 0.5.4, update to version 0.5.4 or later to resolve the issue. As a temporary workaround, consider avoiding the use of APE files until the update is applied.