CVE-2018-10001

Опубликовано: 11 апр. 2018

Источник: debian

EPSS Низкий

Описание

The decode_init function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via an AVI file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
ffmpeg	fixed	7:3.4.3-1		package
libav	removed			package
libav	not-affected		jessie	package

Примечания

https://git.videolan.org/?p=ffmpeg.git;a=commit;h=47b7c68ae54560e2308bdb6be4fb076c73b93081
Fixed in 3.2.11

EPSS

Процентиль: 76%

0.00975

Низкий

Связанные уязвимости

CVE-2018-10001

CVSS3: 6.5

ubuntu

почти 8 лет назад

The decode_init function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via an AVI file.

CVE-2018-10001

CVSS3: 6.5

nvd

почти 8 лет назад

The decode_init function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via an AVI file.

GHSA-wm45-whhp-3jqp

CVSS3: 6.5

github

больше 3 лет назад

The decode_init function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via an AVI file.

EPSS

Процентиль: 76%

0.00975

Низкий