FFmpeg through 4.3 has a heap-based buffer overflow in avio get str in libavformat/aviobuf.c because dnn backend native.c calls ff dnn load model native and a certain index check is omitted.