Описание
The update_dimensions function in libavcodec/vp8.c in FFmpeg through 2.8.1, as used in Google Chrome before 46.0.2490.71 and other products, relies on a coefficient-partition count during multi-threaded operation, which allows remote attackers to cause a denial of service (race condition and memory corruption) or possibly have unspecified other impact via a crafted WebM file.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 47.0.2526.73-0ubuntu1.1218 |
| bionic | released | 47.0.2526.73-0ubuntu1.1218 |
| devel | released | 47.0.2526.73-0ubuntu1.1218 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [47.0.2526.73-0ubuntu0.14.04.1.1106]] |
| precise | ignored | |
| precise/esm | DNE | precise was ignored |
| trusty | released | 47.0.2526.73-0ubuntu0.14.04.1.1106 |
| trusty/esm | DNE | trusty was released [47.0.2526.73-0ubuntu0.14.04.1.1106] |
| upstream | released | |
| vivid | released | 47.0.2526.73-0ubuntu0.15.04.1.1190 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 7:2.8.3-1 |
| bionic | not-affected | 7:2.8.3-1 |
| devel | not-affected | 7:2.8.3-1 |
| esm-apps/bionic | not-affected | 7:2.8.3-1 |
| esm-apps/xenial | not-affected | 7:2.8.3-1 |
| esm-infra-legacy/trusty | DNE | |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | ignored | |
| precise | not-affected | code not present |
| precise/esm | DNE | precise was not-affected [code not present] |
| trusty | ignored | |
| trusty/esm | ignored | |
| upstream | needs-triage | |
| vivid | ignored | end of life |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 1.10.3-0ubuntu0.15.10.1 |
| bionic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.10.3-0ubuntu0.14.04.1]] |
| esm-infra/xenial | released | 1.10.3-0ubuntu0.15.10.1 |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | released | 1.10.3-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1.10.3-0ubuntu0.14.04.1] |
| upstream | released | 1.10.3 |
Показывать по
Ссылки на источники
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
The update_dimensions function in libavcodec/vp8.c in FFmpeg through 2.8.1, as used in Google Chrome before 46.0.2490.71 and other products, relies on a coefficient-partition count during multi-threaded operation, which allows remote attackers to cause a denial of service (race condition and memory corruption) or possibly have unspecified other impact via a crafted WebM file.
The update_dimensions function in libavcodec/vp8.c in FFmpeg through 2.8.1, as used in Google Chrome before 46.0.2490.71 and other products, relies on a coefficient-partition count during multi-threaded operation, which allows remote attackers to cause a denial of service (race condition and memory corruption) or possibly have unspecified other impact via a crafted WebM file.
The update_dimensions function in libavcodec/vp8.c in FFmpeg through 2 ...
The update_dimensions function in libavcodec/vp8.c in FFmpeg through 2.8.1, as used in Google Chrome before 46.0.2490.71 and other products, relies on a coefficient-partition count during multi-threaded operation, which allows remote attackers to cause a denial of service (race condition and memory corruption) or possibly have unspecified other impact via a crafted WebM file.
Уязвимость мультимедийной библиотеки FFmpeg браузера Google Chrome, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
6.8 Medium
CVSS2