CVE List


Moderate 6.5

In ffjpeg (commit hash: caade60), the function bmp_load() in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfif_encode() in jfif.c. This is due to the incomplete patch for issue 38

Published May 5, 2022.

Affected software

Get alerts for Ffjpeg Project Ffjpeg

Reference links