Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2014-7933

Опубликовано: 22 янв. 2015
Источник: debian
EPSS Низкий

Описание

Use-after-free vulnerability in the matroska_read_seek function in libavformat/matroskadec.c in FFmpeg before 2.5.1, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska file that triggers improper maintenance of tracks data.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
chromium-browserfixed40.0.2214.91-1package
chromium-browserend-of-lifewheezypackage
chromium-browserend-of-lifesqueezepackage
ffmpegfixed7:2.5.1-1package
ffmpegend-of-lifesqueezepackage
libavfixed6:11.3-1package

Примечания

  • ffmpeg: https://git.videolan.org/?p=ffmpeg.git;a=commit;h=490a3ebf36821b81f73e34ad3f554cb523dd2682

  • libav: https://git.libav.org/?p=libav.git;a=commit;h=490a3ebf36821b81f73e34ad3f554cb523dd2682

EPSS

Процентиль: 90%
0.05935
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2014-7933

ubuntu
около 11 лет назад

Use-after-free vulnerability in the matroska_read_seek function in libavformat/matroskadec.c in FFmpeg before 2.5.1, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska file that triggers improper maintenance of tracks data.

redhat логотип

CVE-2014-7933

redhat
около 11 лет назад

Use-after-free vulnerability in the matroska_read_seek function in libavformat/matroskadec.c in FFmpeg before 2.5.1, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska file that triggers improper maintenance of tracks data.

nvd логотип

CVE-2014-7933

nvd
около 11 лет назад

Use-after-free vulnerability in the matroska_read_seek function in libavformat/matroskadec.c in FFmpeg before 2.5.1, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska file that triggers improper maintenance of tracks data.

github логотип

GHSA-m52w-9gvm-79q5

github
больше 3 лет назад

Use-after-free vulnerability in the matroska_read_seek function in libavformat/matroskadec.c in FFmpeg before 2.5.1, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska file that triggers improper maintenance of tracks data.

EPSS

Процентиль: 90%
0.05935
Низкий