The vmd_decode function in libavcodec/vmdvideo.c in FFmpeg before 2.5.2 does not validate the relationship between a certain length value and the frame width, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted Sierra VMD video data.
La función vmd_decode en libavcodec/vmdvideo.c en FFmpeg anterior a 2.5.2 no valida la relación entre cierto valor de longitud y la anchura del marco, lo que permite a atacantes remotos causar una denegación de servicio (acceso al array fuera de rango) o posiblemente tener otro impacto no especificado a través de datos de vídeo Sierra VMD manipulados.
Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition. Versions less than 2.6.3 are affected.
