CVE-2013-0874

Name of the Vulnerable Software and Affected Versions FFmpeg versions prior to 1.1.3

Description The issue is related to the doubles2str and shorts2str functions in libavcodec/tiff.c, which allow remote attackers to have an unspecified impact via a crafted TIFF image. This is due to an out-of-bounds array access.

Recommendations For versions prior to 1.1.3, update to version 1.1.3 or later to resolve the issue. As a temporary workaround, consider avoiding the use of crafted TIFF images until the update is applied.