6.7 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
72.4%
The wavpack_decode_frame function in libavcodec/wavpack.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted WavPack data, which triggers an out-of-bounds array access, possibly due to an off-by-one error.
git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=be818df547c3b0ae4fadb50fd210139a8636706a
www.debian.org/security/2013/dsa-2793
www.ffmpeg.org/security.html