VDB
ALPINE-CVE-2016-6881
ALPINE-CVE-2016-6881
PUBLISHED
CVSS 5.5 MEDIUM
The zlib_refill function in libavformat/swfdec.c in FFmpeg before 3.1.3 allows remote attackers to cause an infinite loop denial of service via a crafted SWF file.
Risk Scores
CVSS v3.0
5.5
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alpine:v3.3 | ffmpeg | 0.10-r0, 0.10-r1, 0.10-r2 |
| Alpine:v3.4 | ffmpeg | 2.1.3-r0, 2.1.4-r0, 2.2-r0 |
Timeline
- Dec 23, 2016 CVE Published
- Nov 19, 2025 CVE Updated
- Apr 30, 2026 Distribution Patch