Endpoint Vulnerability

Cairo rendering crash due to memory allocation issue with FFMpeg 0.10

Description

Security researcher Bert Massop reported a crash in the Cairo graphics layer on Linux systems using the LibAV library included in version 0.10 of the FFmpeg library. This was due to an error when allocating the LibAV header when decoding some videos.

Affected Products

Firefox,Firefox ESR

References

CVE-2016-2839,