NULL Pointer Dereference Vulnerability in FFmpeg libswresample

NULL Pointer Dereference Vulnerability in FFmpeg libswresample

CVE-2017-17555 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

The swri_audio_convert function in audioconvert.c in FFmpeg libswresample through 3.0.101, as used in FFmpeg 3.4.1, aubio 0.4.6, and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted audio file.

Learn more about our Web Application Penetration Testing UK.