CVE-2016-9824

Опубликовано: 01 мар. 2017

Источник: debian

EPSS Низкий

Описание

Integer overflow in libswscale/x86/swscale.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via a crafted file.

Пакет	Статус	Релиз	Тип
libav	removed		package
libav	ignored	jessie	package
libav	ignored	wheezy	package

https://blogs.gentoo.org/ago/2016/12/01/libav-multiple-crashes-from-the-undefined-behavior-sanitizer
https://github.com/asarubbo/poc/blob/master/00039-libav-signedintoverflow-swscale_c
https://bugzilla.libav.org/show_bug.cgi?id=983

EPSS

Процентиль: 43%

0.00209

Низкий

CVE-2016-9824

CVSS3: 5.5

ubuntu

почти 9 лет назад

Integer overflow in libswscale/x86/swscale.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via a crafted file.

CVE-2016-9824

CVSS3: 5.5

nvd

почти 9 лет назад

Integer overflow in libswscale/x86/swscale.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via a crafted file.

GHSA-cp42-9jh9-448f

CVSS3: 5.5

github

больше 3 лет назад

Integer overflow in libswscale/x86/swscale.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via a crafted file.

EPSS

Процентиль: 43%

0.00209

Низкий