Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2013-2277

Опубликовано: 27 фев. 2013
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 7.5

Описание

The ff_h264_decode_seq_parameter_set function in h264_ps.c in libavcodec in FFmpeg before 1.1.3 does not validate the relationship between luma depth and chroma depth, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via crafted H.264 data.

РелизСтатусПримечание
devel

DNE

hardy

ignored

end of life
lucid

ignored

oneiric

DNE

precise

DNE

quantal

DNE

raring

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

DNE

hardy

DNE

lucid

ignored

oneiric

DNE

precise

DNE

quantal

DNE

raring

DNE

upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

not-affected

6:0.8.6-1ubuntu2
hardy

DNE

lucid

DNE

oneiric

ignored

precise

released

4:0.8.6-0ubuntu0.12.04.1
quantal

released

6:0.8.6-0ubuntu0.12.10.1
raring

not-affected

6:0.8.6-1ubuntu2
upstream

needs-triage

Показывать по

РелизСтатусПримечание
devel

not-affected

6:0.8.6ubuntu2
hardy

DNE

lucid

DNE

oneiric

ignored

precise

released

4:0.8.6ubuntu0.12.04.1
quantal

released

6:0.8.6ubuntu0.12.10.1
raring

not-affected

6:0.8.6ubuntu2
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 70%
0.00623
Низкий

7.5 High

CVSS2

Связанные уязвимости

nvd логотип

CVE-2013-2277

nvd
почти 13 лет назад

The ff_h264_decode_seq_parameter_set function in h264_ps.c in libavcodec in FFmpeg before 1.1.3 does not validate the relationship between luma depth and chroma depth, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via crafted H.264 data.

debian логотип

CVE-2013-2277

debian
почти 13 лет назад

The ff_h264_decode_seq_parameter_set function in h264_ps.c in libavcod ...

github логотип

GHSA-q79f-c6p6-2j9r

github
больше 3 лет назад

The ff_h264_decode_seq_parameter_set function in h264_ps.c in libavcodec in FFmpeg before 1.1.3 does not validate the relationship between luma depth and chroma depth, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via crafted H.264 data.

EPSS

Процентиль: 70%
0.00623
Низкий

7.5 High

CVSS2