Описание
The iff_read_header function in iff.c in libavformat in FFmpeg through 1.1.3 does not properly handle data sizes for Interchange File Format (IFF) data during operations involving a CMAP chunk or a video codec, which allows remote attackers to cause a denial of service (integer overflow, out-of-bounds array access, and application crash) or possibly have unspecified other impact via a crafted header.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | ignored | end of life |
| lucid | ignored | |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | ignored | |
| oneiric | DNE | |
| precise | DNE | |
| quantal | DNE | |
| raring | DNE | |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 6:0.8.6-1ubuntu2 |
| hardy | DNE | |
| lucid | DNE | |
| oneiric | ignored | |
| precise | released | 4:0.8.6-0ubuntu0.12.04.1 |
| quantal | released | 6:0.8.6-0ubuntu0.12.10.1 |
| raring | not-affected | 6:0.8.6-1ubuntu2 |
| upstream | released | 0.8.6 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 6:0.8.6ubuntu2 |
| hardy | DNE | |
| lucid | DNE | |
| oneiric | ignored | |
| precise | released | 4:0.8.6ubuntu0.12.04.1 |
| quantal | released | 6:0.8.6ubuntu0.12.10.1 |
| raring | not-affected | 6:0.8.6ubuntu2 |
| upstream | released | 0.8.6 |
Показывать по
EPSS
7.5 High
CVSS2
Связанные уязвимости
The iff_read_header function in iff.c in libavformat in FFmpeg through 1.1.3 does not properly handle data sizes for Interchange File Format (IFF) data during operations involving a CMAP chunk or a video codec, which allows remote attackers to cause a denial of service (integer overflow, out-of-bounds array access, and application crash) or possibly have unspecified other impact via a crafted header.
The iff_read_header function in iff.c in libavformat in FFmpeg through ...
The iff_read_header function in iff.c in libavformat in FFmpeg through 1.1.3 does not properly handle data sizes for Interchange File Format (IFF) data during operations involving a CMAP chunk or a video codec, which allows remote attackers to cause a denial of service (integer overflow, out-of-bounds array access, and application crash) or possibly have unspecified other impact via a crafted header.
EPSS
7.5 High
CVSS2