Описание
libavcodec/pngdec.c in FFmpeg before 2.4.2 accepts the monochrome-black format without verifying that the bits-per-pixel value is 1, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted PNG data.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 7:2.5.4-1 |
| bionic | not-affected | 7:2.5.4-1 |
| devel | not-affected | 7:2.5.4-1 |
| esm-apps/bionic | not-affected | 7:2.5.4-1 |
| esm-apps/xenial | not-affected | 7:2.5.4-1 |
| esm-infra-legacy/trusty | DNE | |
| lucid | ignored | end of life |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | code not present |
| devel | not-affected | code not present |
| esm-apps/bionic | not-affected | code not present |
| esm-apps/xenial | not-affected | code not present |
| esm-infra-legacy/trusty | DNE | trusty/esm was not-affected [uses system ffmpeg] |
| lucid | ignored | end of life |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | not-affected | uses system ffmpeg |
Показывать по
EPSS
7.5 High
CVSS2
Связанные уязвимости
libavcodec/pngdec.c in FFmpeg before 2.4.2 accepts the monochrome-black format without verifying that the bits-per-pixel value is 1, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted PNG data.
libavcodec/pngdec.c in FFmpeg before 2.4.2 accepts the monochrome-blac ...
libavcodec/pngdec.c in FFmpeg before 2.4.2 accepts the monochrome-black format without verifying that the bits-per-pixel value is 1, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted PNG data.
EPSS
7.5 High
CVSS2