CVE-2021-38171

adts_decode_extradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the init_get_bits return value, which is a necessary step because the second argument to init_get_bits can be crafted.

Weakness

The product does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.

Affected Software

Name	Vendor	Start Version	End Version
Ffmpeg	Ffmpeg	4.4 (including)	4.4 (including)
Ffmpeg	Ubuntu	bionic	*
Ffmpeg	Ubuntu	esm-apps/bionic	*
Ffmpeg	Ubuntu	esm-apps/focal	*
Ffmpeg	Ubuntu	esm-apps/xenial	*
Ffmpeg	Ubuntu	focal	*
Ffmpeg	Ubuntu	hirsute	*
Ffmpeg	Ubuntu	impish	*
Ffmpeg	Ubuntu	trusty	*
Ffmpeg	Ubuntu	upstream	*
Ffmpeg	Ubuntu	xenial	*

Potential Mitigations

References

https://github.com/FFmpeg/FFmpeg/commit/9ffa49496d1aae4cbbb387aac28a9e061a6ab0a6
https://lists.debian.org/debian-lts-announce/2021/11/msg00012.html
https://patchwork.ffmpeg.org/project/ffmpeg/patch/AS8P193MB12542A86E22F8207EC971930B6F19%40AS8P193MB1254.EURP193.PROD.OUTLOOK.COM/
https://security.gentoo.org/glsa/202312-14
https://www.debian.org/security/2021/dsa-4990
https://www.debian.org/security/2021/dsa-4998
https://github.com/FFmpeg/FFmpeg/commit/9ffa49496d1aae4cbbb387aac28a9e061a6ab0a6
https://lists.debian.org/debian-lts-announce/2021/11/msg00012.html
https://patchwork.ffmpeg.org/project/ffmpeg/patch/AS8P193MB12542A86E22F8207EC971930B6F19%40AS8P193MB1254.EURP193.PROD.OUTLOOK.COM/
https://security.gentoo.org/glsa/202312-14
https://www.debian.org/security/2021/dsa-4990
https://www.debian.org/security/2021/dsa-4998

NVD	https://nvd.nist.gov/vuln/detail/CVE-2021-38171
CWE	https://cwe.mitre.org/data/definitions/252.html

Unchecked Return Value

Weakness

Affected Software

Potential Mitigations

References