CVE-2013-2495

Name of the Vulnerable Software and Affected Versions FFmpeg versions through 1.1.3

Description The issue is related to the handling of Interchange File Format (IFF) data in the iff read header function. This function does not properly handle data sizes during operations involving a CMAP chunk or a video codec. As a result, remote attackers can cause a denial of service, including integer overflow, out-of-bounds array access, and application crash, via a crafted header. The estimated number of potentially affected devices and details about real-world incidents are not specified.

Recommendations For versions through 1.1.3, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.