CVE-2013-3673

Name of the Vulnerable Software and Affected Versions FFmpeg versions prior to 1.2.1

Description The issue arises from the gif decode frame function in gifdec.c in libavcodec, which does not properly manage the disposal methods of frames. This allows remote attackers to cause a denial of service, resulting in out-of-bounds array access and application crash, via crafted GIF data.

Recommendations For versions prior to 1.2.1, update to version 1.2.1 or later to resolve the issue. As a temporary workaround, consider restricting the processing of GIF data from untrusted sources until the update is applied.