Описание
Double free vulnerability in FFmpeg 3.3.4 and earlier allows remote attackers to cause a denial of service via a crafted AVI file.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| ffmpeg | fixed | 7:3.4-1 | package | |
| libav | removed | package | ||
| libav | not-affected | jessie | package |
Примечания
https://www.openwall.com/lists/oss-security/2017/10/20/4
https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/df62b70de8aaa285168e72fe8f6e740843ca91fa
EPSS
Процентиль: 67%
0.00552
Низкий
Связанные уязвимости
CVSS3: 6.5
ubuntu
больше 8 лет назад
Double free vulnerability in FFmpeg 3.3.4 and earlier allows remote attackers to cause a denial of service via a crafted AVI file.
CVSS3: 6.5
nvd
больше 8 лет назад
Double free vulnerability in FFmpeg 3.3.4 and earlier allows remote attackers to cause a denial of service via a crafted AVI file.
CVSS3: 6.5
github
больше 3 лет назад
Double free vulnerability in FFmpeg 3.3.4 and earlier allows remote attackers to cause a denial of service via a crafted AVI file.
EPSS
Процентиль: 67%
0.00552
Низкий