Date published: 2017-07-17T15:29:00.260-04:00
Date last modified: 2017-11-06T21:29:00.373-05:00
CVSS Score: 6.8
Principal attack vector: NETWORK
Reference URL: http://www.debian.org/security/2017/dsa-3957
Summary: Integer overflow in the ape_decode_frame function in libavcodec/apedec.c in FFmpeg through 3.3.2 allows remote attackers to cause a denial of service (out-of-array access and application crash) or possibly have unspecified other impact via a crafted APE file.