Описание
An off by one error resulting in an allocation of zero size in FFmpeg in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 for Windows, and 54.0.2840.100 for Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted video file.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 55.0.2883.87-0ubuntu1 |
| bionic | released | 55.0.2883.87-0ubuntu1 |
| devel | released | 55.0.2883.87-0ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [58.0.3029.81-0ubuntu0.14.04.1172]] |
| precise | ignored | |
| precise/esm | DNE | precise was ignored |
| trusty | released | 58.0.3029.81-0ubuntu0.14.04.1172 |
| trusty/esm | DNE | trusty was released [58.0.3029.81-0ubuntu0.14.04.1172] |
| upstream | released | 54.0.2840.100 |
| vivid/stable-phone-overlay | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | released | 7:3.2-1 |
| devel | released | 7:3.2-1 |
| esm-apps/bionic | released | 7:3.2-1 |
| esm-apps/xenial | not-affected | code not present |
| esm-infra-legacy/trusty | DNE | |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | DNE | |
| trusty/esm | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | not-affected | code not present |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needs-triage |
| trusty | not-affected | code not present |
| trusty/esm | not-affected | code not present |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | released | 1.19.6-0ubuntu2 |
| bionic | DNE | |
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.18.5-0ubuntu0.14.04.1]] |
| esm-infra/xenial | released | 1.18.5-0ubuntu0.16.04.1 |
| precise | DNE | |
| precise/esm | DNE | |
| trusty | released | 1.18.5-0ubuntu0.14.04.1 |
| trusty/esm | DNE | trusty was released [1.18.5-0ubuntu0.14.04.1] |
| upstream | pending | 1.18.5 |
Показывать по
EPSS
6.8 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
An off by one error resulting in an allocation of zero size in FFmpeg in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 for Windows, and 54.0.2840.100 for Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted video file.
An off by one error resulting in an allocation of zero size in FFmpeg in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 for Windows, and 54.0.2840.100 for Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted video file.
An off by one error resulting in an allocation of zero size in FFmpeg ...
An off by one error resulting in an allocation of zero size in FFmpeg in Google Chrome prior to 54.0.2840.98 for Mac, and 54.0.2840.99 for Windows, and 54.0.2840.100 for Linux, and 55.0.2883.84 for Android allowed a remote attacker to potentially exploit heap corruption via a crafted video file.
EPSS
6.8 Medium
CVSS2
8.8 High
CVSS3