Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-8661

Опубликовано: 24 дек. 2015
Источник: ubuntu
Приоритет: medium
CVSS2: 7.5
CVSS3: 8.3

Описание

The h264_slice_header_init function in libavcodec/h264_slice.c in FFmpeg before 2.8.3 does not validate the relationship between the number of threads and the number of slices, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted H.264 data.

РелизСтатусПримечание
devel

not-affected

7:2.8.4-1ubuntu1
esm-infra-legacy/trusty

DNE

precise

DNE

trusty

DNE

trusty/esm

DNE

upstream

released

2.7.4,2.5.9
vivid

not-affected

7:2.5.9-0ubuntu0.15.04.1
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

released

7:2.7.4-0ubuntu0.15.10.1

Показывать по

РелизСтатусПримечание
devel

DNE

esm-infra-legacy/trusty

not-affected

code not present
precise

not-affected

code not present
trusty

not-affected

code not present
trusty/esm

not-affected

code not present
upstream

needs-triage

vivid

ignored

end of life
vivid/stable-phone-overlay

DNE

vivid/ubuntu-core

DNE

wily

DNE

Показывать по

Ссылки на источники

7.5 High

CVSS2

8.3 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2015-8661

CVSS3: 8.3
nvd
около 10 лет назад

The h264_slice_header_init function in libavcodec/h264_slice.c in FFmpeg before 2.8.3 does not validate the relationship between the number of threads and the number of slices, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted H.264 data.

debian логотип

CVE-2015-8661

CVSS3: 8.3
debian
около 10 лет назад

The h264_slice_header_init function in libavcodec/h264_slice.c in FFmp ...

github логотип

GHSA-999v-29wj-p8x7

CVSS3: 8.3
github
больше 3 лет назад

The h264_slice_header_init function in libavcodec/h264_slice.c in FFmpeg before 2.8.3 does not validate the relationship between the number of threads and the number of slices, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted H.264 data.

fstec логотип

BDU:2016-00373

fstec
около 10 лет назад

Уязвимость мультимедийной библиотеки FFmpeg, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

suse-cvrf логотип

openSUSE-SU-2016:0089-1

suse-cvrf
около 10 лет назад

Security update for ffmpeg

7.5 High

CVSS2

8.3 High

CVSS3