CVE-2022-1475
Published: 2 May 2022
An integer overflow vulnerability was found in FFmpeg versions before 4.4.2 and before 5.0.1 in g729_parse() in llibavcodec/g729_parser.c when processing a specially crafted file.
Priority
CVSS 3 base score: 5.5
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1475
- https://trac.ffmpeg.org/ticket/9651
- https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=757da974b21833529cc41bdcc9684c29660cdfa8
- https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=e9e2ddbc6c78cc18b76093617f82c920e58a8d1f (n4.4.2)
- https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=fa2e4afe8d0a23fac37392ef6506cfc9841f8d3d (n4.3.4)
- https://ubuntu.com/security/notices/USN-5472-1
- NVD
- Launchpad
- Debian