Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2017-9128

Опубликовано: 12 июн. 2017
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 4.3
CVSS3: 6.5

Описание

The quicktime_video_width function in lqt_quicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted mp4 file.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

2:1.2.4-11build1
cosmic

not-affected

2:1.2.4-11build1
devel

not-affected

2:1.2.4-11build1
disco

not-affected

2:1.2.4-11build1
eoan

not-affected

2:1.2.4-11build1
esm-apps/bionic

not-affected

2:1.2.4-11build1
esm-apps/focal

not-affected

2:1.2.4-11build1
esm-apps/xenial

released

2:1.2.4-7+deb8u1ubuntu0.1
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]

Показывать по

Ссылки на источники

EPSS

Процентиль: 86%
0.02879
Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Связанные уязвимости

nvd логотип

CVE-2017-9128

CVSS3: 6.5
nvd
больше 8 лет назад

The quicktime_video_width function in lqt_quicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted mp4 file.

debian логотип

CVE-2017-9128

CVSS3: 6.5
debian
больше 8 лет назад

The quicktime_video_width function in lqt_quicktime.c in libquicktime ...

github логотип

GHSA-qfhc-rxx9-xhvv

CVSS3: 6.5
github
больше 3 лет назад

The quicktime_video_width function in lqt_quicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted mp4 file.

suse-cvrf логотип

openSUSE-SU-2017:1806-1

suse-cvrf
больше 8 лет назад

Security update for libquicktime

suse-cvrf логотип

SUSE-SU-2017:1769-1

suse-cvrf
больше 8 лет назад

Security update for libquicktime

EPSS

Процентиль: 86%
0.02879
Низкий

4.3 Medium

CVSS2

6.5 Medium

CVSS3

Уязвимость CVE-2017-9128