Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2012-5144

Опубликовано: 12 дек. 2012
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 10

Описание

Google Chrome before 23.0.1271.97, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, do not properly perform AAC decoding, which allows remote attackers to cause a denial of service (stack memory corruption) or possibly have unspecified other impact via vectors related to "an off-by-one overwrite when switching to LTP profile from MAIN."

РелизСтатусПримечание
devel

released

24.0.1312.56-0ubuntu1
hardy

DNE

lucid

released

3.0.1271.97-0ubuntu0.10.04.1
oneiric

released

3.0.1271.97-0ubuntu0.11.10.1
precise

released

3.0.1271.97-0ubuntu0.12.04.1
quantal

released

3.0.1271.97-0ubuntu0.12.10.1
upstream

released

23.0.1271.97

Показывать по

РелизСтатусПримечание
devel

DNE

hardy

ignored

end of life
lucid

not-affected

natty

DNE

oneiric

DNE

precise

DNE

quantal

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

DNE

hardy

DNE

lucid

not-affected

natty

DNE

oneiric

DNE

precise

DNE

quantal

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

released

6:0.8.5-0ubuntu1
hardy

DNE

lucid

DNE

natty

ignored

end of life
oneiric

released

4:0.7.6-0ubuntu0.11.10.3
precise

released

4:0.8.5-0ubuntu0.12.04.1
quantal

released

6:0.8.5-0ubuntu0.12.10.1
upstream

released

0.8.5

Показывать по

РелизСтатусПримечание
devel

released

6:0.8.5ubuntu1
hardy

DNE

lucid

DNE

natty

ignored

end of life
oneiric

released

4:0.7.6ubuntu0.11.10.3
precise

released

4:0.8.5ubuntu0.12.04.1
quantal

released

6:0.8.5ubuntu0.12.10.1
upstream

released

0.8.5

Показывать по

Ссылки на источники

EPSS

Процентиль: 87%
0.03505
Низкий

10 Critical

CVSS2

Связанные уязвимости

nvd логотип

CVE-2012-5144

nvd
около 13 лет назад

Google Chrome before 23.0.1271.97, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, do not properly perform AAC decoding, which allows remote attackers to cause a denial of service (stack memory corruption) or possibly have unspecified other impact via vectors related to "an off-by-one overwrite when switching to LTP profile from MAIN."

debian логотип

CVE-2012-5144

debian
около 13 лет назад

Google Chrome before 23.0.1271.97, and Libav 0.7.x before 0.7.7 and 0. ...

github логотип

GHSA-6c83-9pcg-77c5

github
больше 3 лет назад

Google Chrome before 23.0.1271.97, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, do not properly perform AAC decoding, which allows remote attackers to cause a denial of service (stack memory corruption) or possibly have unspecified other impact via vectors related to "an off-by-one overwrite when switching to LTP profile from MAIN."

EPSS

Процентиль: 87%
0.03505
Низкий

10 Critical

CVSS2