Integer Overflow in FFmpeg's ff_j2k_dwt_init Function

Integer Overflow in FFmpeg's ff_j2k_dwt_init Function

CVE-2012-0849 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

Integer overflow in the ff_j2k_dwt_init function in libavcodec/j2k_dwt.c in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted JPEG2000 image that triggers an incorrect check for a negative value.

Learn more about our Web Application Penetration Testing UK.