A global buffer overflow vulnerability in jfif_encode at jfif.c:701 of ffjpeg through 2020-06-22 allows attackers to cause a Denial of Service (DOS) via a crafted jpeg file.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-23705
Reference (s):
- https://github.com/rockcarry/ffjpeg/issues/25