CVE-2014-8541

Опубликовано: 05 нояб. 2014

Источник: ubuntu

Приоритет: low

CVSS2: 7.5

Описание

libavcodec/mjpegdec.c in FFmpeg before 2.4.2 considers only dimension differences, and not bits-per-pixel differences, when determining whether an image size has changed, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted MJPEG data.

Релиз	Статус	Примечание
artful	not-affected	7:2.5.4-1
bionic	not-affected	7:2.5.4-1
cosmic	not-affected	7:2.5.4-1
devel	not-affected	7:2.5.4-1
disco	not-affected	7:2.5.4-1
esm-apps/bionic	not-affected	7:2.5.4-1
esm-apps/xenial	not-affected	7:2.5.4-1
esm-infra-legacy/trusty	DNE
lucid	ignored	end of life
precise	DNE

Показывать по

Релиз	Статус	Примечание
artful	DNE
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	released	6:9.20-0ubuntu0.14.04.1+esm1
lucid	DNE
precise	released	4:0.8.17-0ubuntu0.12.04.2
precise/esm	DNE	precise was released [4:0.8.17-0ubuntu0.12.04.2]
trusty	ignored	end of standard support

Показывать по

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	code not present
cosmic	not-affected	code not present
devel	not-affected	code not present
disco	not-affected	code not present
esm-apps/bionic	not-affected	code not present
esm-apps/xenial	not-affected	code not present
esm-infra-legacy/trusty	DNE	trusty/esm was not-affected [uses system ffmpeg]
lucid	ignored	end of life
precise	ignored	end of life

Показывать по

Ссылки на источники

7.5 High

CVSS2

Связанные уязвимости

CVE-2014-8541

nvd

больше 11 лет назад

CVE-2014-8541

debian

больше 11 лет назад

libavcodec/mjpegdec.c in FFmpeg before 2.4.2 considers only dimension ...

GHSA-xrfr-h69f-r87q

github

больше 3 лет назад

7.5 High

CVSS2

CVE-2014-8541

Описание

Пакет ffmpeg

Пакет libav

Пакет mplayer

Ссылки на источники

Связанные уязвимости