CVE-2017-18245

Опубликовано: 23 мар. 2018

Источник: debian

Описание

The mpc8_probe function in libavformat/mpc8.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted audio file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libav	removed			package

Примечания

https://bugzilla.libav.org/show_bug.cgi?id=1094
new 2019 PoC crash with non-null, non-asan segfault, 32-bit only

Связанные уязвимости

CVE-2017-18245

CVSS3: 6.5

ubuntu

почти 8 лет назад

The mpc8_probe function in libavformat/mpc8.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted audio file.

CVE-2017-18245

CVSS3: 6.5

nvd

почти 8 лет назад

The mpc8_probe function in libavformat/mpc8.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted audio file.

GHSA-r3w7-7qj4-4c9v

CVSS3: 6.5

github

больше 3 лет назад

The mpc8_probe function in libavformat/mpc8.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted audio file.