Security Advisory

CVE-2021-3566

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-05 20:21:37

Last updated 2024-08-03 17:01:08

Assigner fedora

State PUBLISHED

Description

Prior to ffmpeg version 4.3, the tty demuxer did not have a read_probe function assigned to it. By crafting a legitimate "ffconcat" file that references an image, followed by a file the triggers the tty demuxer, the contents of the second file will be copied into the output file verbatim (as long as the `-vcodec copy` option is passed to ffmpeg).

← Browse all CVEs View on cve.org ↗