DEBIAN-CVE-2014-5272

DEBIAN-CVE-2014-5272 PUBLISHED

libavcodec/iff.c in FFMpeg before 1.1.14, 1.2.x before 1.2.8, 2.2.x before 2.2.7, and 2.3.x before 2.3.2 allows remote attackers to have unspecified impact via a crafted iff image, which triggers an out-of-bounds array access, related to the rgb8 and rgbn formats.

Affected Products

Vendor	Product	Versions
Debian:11	ffmpeg	0, 0, 0
Debian:14	ffmpeg	0, 0, 0
Debian:12	ffmpeg	0, 0, 0
Debian:13	ffmpeg	0, 0, 0

Timeline

Nov 3, 2014 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2014-5272 advisory

Open in Interactive Console →