Vulnerabilities > Rockcarry > Ffjpeg > 2021.12.06

DATE CVE VULNERABILITY TITLE RISK
2022-05-05 CVE-2022-28471 Integer Overflow or Wraparound vulnerability in Rockcarry Ffjpeg 20211206
In ffjpeg (commit hash: caade60), the function bmp_load() in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfif_encode() in jfif.c.
network
low complexity
rockcarry CWE-190
6.5
6.5
2022-02-11 CVE-2021-45385 NULL Pointer Dereference vulnerability in Rockcarry Ffjpeg 20211206
A Null Pointer Dereference vulnerability exits in ffjpeg d5cfd49 (2021-12-06) in bmp_load().
network
low complexity
rockcarry CWE-476
6.5
6.5