cvedb.io
CVE-2021-44956
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2022-02-08T15:15:07.643 · Last modified 2026-06-17T04:12:59.773

Summary

Two Heap based buffer overflow vulnerabilities exist in ffjpeg through 01.01.2021. It is similar to CVE-2020-23852. Issues that are in the jfif_decode function at ffjpeg/src/jfif.c (line 552) could cause a Denial of Service by using a crafted jpeg file.

Affected products

rockcarry — ffjpeg

Does this affect you?

Add your gear to cvedb and we'll alert you only when rockcarry ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.