Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2011-3940

Опубликовано: 20 авг. 2012
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8

Описание

nsvdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (out-of-bounds read and write) via a crafted NSV file that triggers "use of uninitialized streams."

РелизСтатусПримечание
devel

DNE

hardy

ignored

end of life
lucid

released

4:0.5.9-0ubuntu0.10.04.1
natty

DNE

oneiric

DNE

precise

DNE

upstream

released

0.5.9

Показывать по

РелизСтатусПримечание
devel

DNE

hardy

DNE

lucid

released

natty

DNE

oneiric

DNE

precise

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

not-affected

4:0.8.1-0ubuntu2
hardy

DNE

lucid

DNE

natty

released

4:0.6.6-0ubuntu0.11.04.1
oneiric

released

4:0.7.6-0ubuntu0.11.10.1
precise

not-affected

4:0.8.1-0ubuntu1
upstream

released

0.6.6,0.7.5,0.8.1

Показывать по

РелизСтатусПримечание
devel

not-affected

4:0.8.1ubuntu1
hardy

DNE

lucid

DNE

natty

released

oneiric

released

precise

not-affected

4:0.8.1ubuntu1
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 76%
0.01029
Низкий

6.8 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2011-3940

nvd
около 13 лет назад

nsvdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (out-of-bounds read and write) via a crafted NSV file that triggers "use of uninitialized streams."

debian логотип

CVE-2011-3940

debian
около 13 лет назад

nsvdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before ...

github логотип

GHSA-xwfp-hmj5-wfj5

github
больше 3 лет назад

nsvdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (out-of-bounds read and write) via a crafted NSV file that triggers "use of uninitialized streams."

EPSS

Процентиль: 76%
0.01029
Низкий

6.8 Medium

CVSS2

Уязвимость CVE-2011-3940