CVE-2018-11102

Опубликовано: 15 мая 2018

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

An issue was discovered in Libav 12.3. A read access violation in the mov_probe function in libavformat/mov.c allows remote attackers to cause a denial of service (application crash), as demonstrated by avconv.

Ссылки

https://bugzilla.libav.org/show_bug.cgi?id=1128
Issue Tracking
Third Party Advisory
https://docs.google.com/document/d/18xCwfxMSJiQ9ruQSVaO8-jlcobDjFiYXWOaw31V37xo/edit
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/09/msg00000.html
https://bugzilla.libav.org/show_bug.cgi?id=1128
Issue Tracking
Third Party Advisory
https://docs.google.com/document/d/18xCwfxMSJiQ9ruQSVaO8-jlcobDjFiYXWOaw31V37xo/edit
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2019/09/msg00000.html

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:libav:libav:12.3:*:*:*:*:*:*:*

EPSS

Процентиль: 64%

0.00464

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

CVE-2018-11102

CVSS3: 7.5

ubuntu

больше 7 лет назад

CVE-2018-11102

CVSS3: 7.5

debian

больше 7 лет назад

An issue was discovered in Libav 12.3. A read access violation in the ...

GHSA-56gc-q6h5-877j

CVSS3: 7.5

github

больше 3 лет назад

EPSS

Процентиль: 64%

0.00464

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-119