CVE-2021-30145

Опубликовано: 18 мая 2021

Источник: debian

Описание

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file.

Пакет	Статус	Версия исправления	Релиз	Тип
mpv	fixed	0.32.0-3		package
mpv	no-dsa		buster	package
mpv	postponed		stretch	package

https://github.com/mpv-player/mpv/commit/cb3fa04bcb2ba9e0d25788480359157208c13e0b

CVE-2021-30145

CVSS3: 7.8

ubuntu

больше 4 лет назад

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file.

CVE-2021-30145

CVSS3: 7.8

nvd

больше 4 лет назад

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file.

openSUSE-SU-2021:0788-1

suse-cvrf

больше 4 лет назад

Security update for mpv

GHSA-mf25-jq7f-vx34

CVSS3: 7.8

github

больше 3 лет назад

A format string vulnerability in mpv through 0.33.0 allows user-assisted remote attackers to achieve code execution via a crafted m3u playlist file.