CVE-2014-5271 Information

Description

Heap-based buffer overflow in the encode_slice function in libavcodec/proresenc_kostya.c in FFMpeg before 1.1.14 1.2.x before 1.2.8 2.x before 2.2.7 and 2.3.x before 2.3.3 and Libav before 10.5 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via unspecified vectors.

Reference

http://git.videolan.org/?p=ffmpeg.git;a=commit;h=52b81ff4635c077b2bc8b8d3637d933b6629d803 http://www.osvdb.org/111725 http://www.securityfocus.com/bid/69250 https://security.gentoo.org/glsa/201603-06 https://www.ffmpeg.org/security.html