Описание
The seg_write_packet function in libavformat/segment.c in ffmpeg 2.1.4 and earlier does not free the correct memory location, which allows remote attackers to cause a denial of service ("invalid memory handler") and possibly execute arbitrary code via a crafted video that triggers a use after free.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 7:2.5.4-1 |
| bionic | not-affected | 7:2.5.4-1 |
| cosmic | not-affected | 7:2.5.4-1 |
| devel | not-affected | 7:2.5.4-1 |
| disco | not-affected | 7:2.5.4-1 |
| esm-apps/bionic | not-affected | 7:2.5.4-1 |
| esm-apps/xenial | not-affected | 7:2.5.4-1 |
| esm-infra-legacy/trusty | DNE | |
| lucid | ignored | end of life |
| precise | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| cosmic | DNE | |
| devel | DNE | |
| disco | DNE | |
| esm-infra-legacy/trusty | released | 6:9.20-0ubuntu0.14.04.1+esm1 |
| lucid | DNE | |
| precise | not-affected | 4:0.8.16-0ubuntu0.12.04.1 |
| precise/esm | DNE | precise was not-affected [4:0.8.16-0ubuntu0.12.04.1] |
| trusty | ignored | end of standard support |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
The seg_write_packet function in libavformat/segment.c in ffmpeg 2.1.4 and earlier does not free the correct memory location, which allows remote attackers to cause a denial of service ("invalid memory handler") and possibly execute arbitrary code via a crafted video that triggers a use after free.
The seg_write_packet function in libavformat/segment.c in ffmpeg 2.1.4 ...
The seg_write_packet function in libavformat/segment.c in ffmpeg 2.1.4 and earlier does not free the correct memory location, which allows remote attackers to cause a denial of service ("invalid memory handler") and possibly execute arbitrary code via a crafted video that triggers a use after free.
EPSS
6.8 Medium
CVSS2