Описание
The ff_sbr_apply function in libavcodec/aacsbr.c in FFmpeg before 2.7.2 does not check for a matching AAC frame syntax element before proceeding with Spectral Band Replication calculations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted AAC data.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | code not present |
| bionic | not-affected | code not present |
| devel | not-affected | code not present |
| esm-apps/bionic | not-affected | code not present |
| esm-apps/xenial | not-affected | code not present |
| esm-infra-legacy/trusty | DNE | |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | ignored | |
| precise | released | 4:0.8.17-0ubuntu0.12.04.2 |
| precise/esm | DNE | precise was released [4:0.8.17-0ubuntu0.12.04.2] |
| trusty | ignored | |
| trusty/esm | ignored | |
| upstream | needs-triage | |
| vivid | ignored | end of life |
Показывать по
EPSS
7.5 High
CVSS2
Связанные уязвимости
The ff_sbr_apply function in libavcodec/aacsbr.c in FFmpeg before 2.7.2 does not check for a matching AAC frame syntax element before proceeding with Spectral Band Replication calculations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted AAC data.
The ff_sbr_apply function in libavcodec/aacsbr.c in FFmpeg before 2.7. ...
The ff_sbr_apply function in libavcodec/aacsbr.c in FFmpeg before 2.7.2 does not check for a matching AAC frame syntax element before proceeding with Spectral Band Replication calculations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted AAC data.
EPSS
7.5 High
CVSS2