CVE-2022-3109 Information

Description

An issue was discovered in the FFmpeg through 3.0. vp3_decode_frame in libavcodec/vp3.c lacks check of the return value of av_malloc() and will cause the null pointer dereference impacting confidentiality and availability.

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=2153551 https://github.com/FFmpeg/FFmpeg/commit/656cb0450aeb73b25d7d26980af342b37ac4c568