CVE-2017-11684

Опубликовано: 27 июл. 2017

Источник: debian

EPSS Низкий

Описание

There is an illegal address access in the build_table function in libavcodec/bitstream.c of Libav 12.1 that will lead to remote denial of service via crafted input.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libav	removed			package
libav	fixed	6:11.11-1~deb8u1	jessie	package
ffmpeg	fixed	7:2.3.1-1		package

Примечания

https://bugzilla.libav.org/show_bug.cgi?id=1073
Fixed by https://github.com/libav/libav/commit/ec683ed527cef9aad208d1daeb10d0e7fb63e75e.patch

EPSS

Процентиль: 73%

0.00753

Низкий

Связанные уязвимости

CVE-2017-11684

CVSS3: 7.5

ubuntu

больше 8 лет назад

There is an illegal address access in the build_table function in libavcodec/bitstream.c of Libav 12.1 that will lead to remote denial of service via crafted input.

CVE-2017-11684

CVSS3: 7.5

nvd

больше 8 лет назад

There is an illegal address access in the build_table function in libavcodec/bitstream.c of Libav 12.1 that will lead to remote denial of service via crafted input.

GHSA-5h8x-m3f2-jfxh

CVSS3: 7.5

github

больше 3 лет назад

There is an illegal address access in the build_table function in libavcodec/bitstream.c of Libav 12.1 that will lead to remote denial of service via crafted input.

EPSS

Процентиль: 73%

0.00753

Низкий