CVE-2016-5115

Опубликовано: 03 фев. 2017

Источник: debian

EPSS Низкий

Описание

The avcodec_decode_audio4 function in libavcodec in libavformat 57.34.103, as used in MPlayer, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file.

Пакеты

Пакет	Статус	Релиз	Тип
libav	removed		package
libav	no-dsa	jessie	package
libav	ignored	wheezy	package

Примечания

This is an issue in ffmpeg/libav, which is fixed in stretch's ffmpeg, but it's unclear when it was fixed exactly
https://trac.mplayerhq.hu/ticket/2298

EPSS

Процентиль: 62%

0.00432

Низкий

Связанные уязвимости

CVE-2016-5115

CVSS3: 5.5

ubuntu

около 9 лет назад

The avcodec_decode_audio4 function in libavcodec in libavformat 57.34.103, as used in MPlayer, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file.

CVE-2016-5115

CVSS3: 5.5

nvd

около 9 лет назад

The avcodec_decode_audio4 function in libavcodec in libavformat 57.34.103, as used in MPlayer, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file.

GHSA-84mq-6c9x-6p8p

CVSS3: 5.5

github

больше 3 лет назад

The avcodec_decode_audio4 function in libavcodec in libavformat 57.34.103, as used in MPlayer, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file.

EPSS

Процентиль: 62%

0.00432

Низкий