{"id":"CVE-2017-9991","details":"Heap-based buffer overflow in the xwd_decode_frame function in libavcodec/xwddec.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file.","modified":"2026-04-16T06:25:11.113450631Z","published":"2017-06-28T06:29:00.457Z","references":[{"type":"ADVISORY","url":"http://www.securityfocus.com/bid/99316"},{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=1399"},{"type":"FIX","url":"https://github.com/FFmpeg/FFmpeg/commit/441026fcb13ac23aa10edc312bdacb6445a0ad06"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/ffmpeg/ffmpeg","events":[{"introduced":"0"},{"last_affected":"523da8eac176c241881a9177237f8bf60e8d7b75"},{"introduced":"0"},{"last_affected":"c40983a6f631d22fede713d535bb9c31d5c9740c"},{"introduced":"0"},{"last_affected":"fda00aa7749326f02a6ca0a7d9bd9bcda1054071"},{"introduced":"0"},{"last_affected":"c66f4d1ae64dffaf456d05cbdade02054446f499"},{"introduced":"0"},{"last_affected":"3512ed3622e1200f03e0d508b5c1bcbf9f5d2c88"},{"introduced":"0"},{"last_affected":"5771a0c8237d6fb0fb65877126ec0f7842fd2a1e"},{"introduced":"0"},{"last_affected":"b408dba231091cd7f465ddf8bd8babf5b7efe63a"},{"introduced":"0"},{"last_affected":"e8b94e5ce48f0dd68287e8b1c2ef4125fabff1d7"},{"introduced":"0"},{"last_affected":"c63e58756699d07b5bc69799db388600d3e634bf"},{"introduced":"0"},{"last_affected":"fbc96c50d72f55131e43939e38c1e5af4315a755"},{"introduced":"0"},{"last_affected":"ce36e74e75751c721185fbebaa4ee8714b44c5a5"},{"introduced":"0"},{"last_affected":"4275b27a230008c41c63397871f173952723e2b2"},{"introduced":"0"},{"last_affected":"c46d22a4a58467bdc7885685b06a2114dd181c43"},{"introduced":"0"},{"last_affected":"c2ea70628215ccede53240843b4514a6c339ab27"},{"introduced":"0"},{"last_affected":"2a5c41e3e4a7e763503af59de903d5649dcc071a"},{"introduced":"0"},{"last_affected":"e08b1cf2df8cfdb3394aa5ab0320739f8b5a1c4f"},{"introduced":"0"},{"last_affected":"384d90f26800521440a1d64d7c6967e9b552a690"},{"introduced":"0"},{"last_affected":"340cea9f22c162e10d120835661e132721b7454b"},{"introduced":"0"},{"last_affected":"c269c43a83166003ab6649263bc60634a6b7866f"},{"introduced":"0"},{"last_affected":"148c4fb8d203fdef8589ccef56a995724938918b"},{"introduced":"0"},{"last_affected":"68ed682710f1cb1f4fdd1fd0447f402d6feabd01"},{"introduced":"0"},{"last_affected":"d4b731e271ba944ade8f6a128271479529507de9"},{"introduced":"0"},{"last_affected":"efa89a841941bf61d1a3eb5c2900f98e3e7db85b"},{"fixed":"441026fcb13ac23aa10edc312bdacb6445a0ad06"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"2.8.11"},{"introduced":"0"},{"last_affected":"3.0"},{"introduced":"0"},{"last_affected":"3.0.1"},{"introduced":"0"},{"last_affected":"3.0.2"},{"introduced":"0"},{"last_affected":"3.0.3"},{"introduced":"0"},{"last_affected":"3.0.4"},{"introduced":"0"},{"last_affected":"3.0.5"},{"introduced":"0"},{"last_affected":"3.0.6"},{"introduced":"0"},{"last_affected":"3.0.7"},{"introduced":"0"},{"last_affected":"3.1"},{"introduced":"0"},{"last_affected":"3.1.1"},{"introduced":"0"},{"last_affected":"3.1.2"},{"introduced":"0"},{"last_affected":"3.1.3"},{"introduced":"0"},{"last_affected":"3.1.4"},{"introduced":"0"},{"last_affected":"3.1.5"},{"introduced":"0"},{"last_affected":"3.1.6"},{"introduced":"0"},{"last_affected":"3.1.7"},{"introduced":"0"},{"last_affected":"3.2"},{"introduced":"0"},{"last_affected":"3.2.1"},{"introduced":"0"},{"last_affected":"3.2.2"},{"introduced":"0"},{"last_affected":"3.2.3"},{"introduced":"0"},{"last_affected":"3.2.4"},{"introduced":"0"},{"last_affected":"3.3"}]}}],"versions":["N","n0.11-dev","n0.12-dev","n0.8","n1.1-dev","n1.2-dev","n1.3-dev","n2.0","n2.1-dev","n2.2-dev","n2.3-dev","n2.4-dev","n2.5-dev","n2.6-dev","n2.7-dev","n2.8","n2.8-dev","n2.8.1","n2.8.10","n2.8.11","n2.8.2","n2.8.3","n2.8.4","n2.8.5","n2.8.6","n2.8.7","n2.8.8","n2.8.9","n2.9-dev","n3.0","n3.0.1","n3.0.2","n3.0.3","n3.0.4","n3.0.5","n3.0.6","n3.0.7","n3.1","n3.1-dev","n3.1.1","n3.1.2","n3.1.3","n3.1.4","n3.1.5","n3.1.6","n3.1.7","n3.2","n3.2-dev","n3.2.1","n3.2.2","n3.2.3","n3.2.4","n3.3-dev","n3.4-dev"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-9991.json","vanir_signatures_modified":"2026-04-11T03:11:47Z","vanir_signatures":[{"id":"CVE-2017-9991-e7f3a661","target":{"file":"libavcodec/xwddec.c","function":"xwd_decode_frame"},"source":"https://github.com/ffmpeg/ffmpeg/commit/441026fcb13ac23aa10edc312bdacb6445a0ad06","signature_type":"Function","deprecated":false,"signature_version":"v1","digest":{"length":6256,"function_hash":"253816503029924644687565567965622089840"}},{"id":"CVE-2017-9991-f6a17f11","target":{"file":"libavcodec/xwddec.c"},"deprecated":false,"source":"https://github.com/ffmpeg/ffmpeg/commit/441026fcb13ac23aa10edc312bdacb6445a0ad06","signature_type":"Line","signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["191879835823689134716103697840491349680","34824248871004992309377173755837193773","1704304235693130936889775319435169602","27109349249474314752532758886991169862","8621534924184273211886905945096021270","27536374372456876721588514193128783210"]}}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}