CVE-2015-6818

Name of the Vulnerable Software and Affected Versions FFmpeg versions prior to 2.7.2

Description The issue is related to the decode ihdr chunk function in libavcodec/pngdec.c, which does not properly enforce the uniqueness of the IHDR chunk in a PNG image. This can be exploited by remote attackers using a crafted image with multiple IHDR chunks, potentially leading to a denial of service due to out-of-bounds array access or other unspecified impacts.

Recommendations For versions prior to 2.7.2, update to version 2.7.2 or later to resolve the issue.