Date published: 2017-08-31T11:29:00.450-04:00
Date last modified: 2017-11-03T21:29:35.287-04:00
CVSS Score: 4.3
Principal attack vector: NETWORK
Reference URL: http://www.debian.org/security/2017/dsa-3996
Summary: In FFmpeg 3.3.3, the read_data function in libavformat/hls.c does not restrict reload attempts for an insufficient list, which allows remote attackers to cause a denial of service (infinite loop).