CVE-2016-7970

Опубликовано: 03 мар. 2017

Источник: debian

EPSS Низкий

Описание

Buffer overflow in the calc_coeff function in libass/ass_blur.c in libass before 0.13.4 allows remote attackers to cause a denial of service via unspecified vectors.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libass	fixed	0.13.4-1		package
libass	not-affected		jessie	package
libass	not-affected		wheezy	package

Примечания

Fixed by: https://github.com/libass/libass/pull/240/commits/08e754612019ed84d1db0d1fc4f5798248decd75
Vulnerable function calc_coeff introduced in: https://github.com/libass/libass/commit/d787615845d78d8f8e6d1a4ffc3dc3eecd8a92f6 (0.13.0)

EPSS

Процентиль: 79%

0.01306

Низкий

Связанные уязвимости

CVE-2016-7970

CVSS3: 7.5

ubuntu

почти 9 лет назад

Buffer overflow in the calc_coeff function in libass/ass_blur.c in libass before 0.13.4 allows remote attackers to cause a denial of service via unspecified vectors.

CVE-2016-7970

CVSS3: 7.5

nvd

почти 9 лет назад

Buffer overflow in the calc_coeff function in libass/ass_blur.c in libass before 0.13.4 allows remote attackers to cause a denial of service via unspecified vectors.

GHSA-5phf-q389-vx4x

CVSS3: 7.5

github

больше 3 лет назад

Buffer overflow in the calc_coeff function in libass/ass_blur.c in libass before 0.13.4 allows remote attackers to cause a denial of service via unspecified vectors.

SUSE-SU-2016:3107-1

suse-cvrf

около 9 лет назад

Security update for libass

EPSS

Процентиль: 79%

0.01306

Низкий