Описание
libavcodec/hevcdec.c in FFmpeg 3.4 and 4.1.2 mishandles detection of duplicate first slices, which allows remote attackers to cause a denial of service (NULL pointer dereference and out-of-array access) or possibly have unspecified other impact via crafted HEVC data.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 7:3.4.6-0ubuntu0.18.04.1 |
| cosmic | ignored | end of life |
| devel | not-affected | 7:4.1.3-1 |
| disco | released | 7:4.1.3-0ubuntu1 |
| eoan | not-affected | 7:4.1.3-1 |
| esm-apps/bionic | released | 7:3.4.6-0ubuntu0.18.04.1 |
| esm-apps/focal | not-affected | 7:4.1.3-1 |
| esm-apps/xenial | released | 7:2.8.17-0ubuntu0.1 |
| esm-infra-legacy/trusty | DNE | |
| focal | not-affected | 7:4.1.3-1 |
Показывать по
6.8 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
libavcodec/hevcdec.c in FFmpeg 3.4 and 4.1.2 mishandles detection of duplicate first slices, which allows remote attackers to cause a denial of service (NULL pointer dereference and out-of-array access) or possibly have unspecified other impact via crafted HEVC data.
libavcodec/hevcdec.c in FFmpeg 3.4 and 4.1.2 mishandles detection of d ...
libavcodec/hevcdec.c in FFmpeg 4.1.2 mishandles detection of duplicate first slices, which allows remote attackers to cause a denial of service (NULL pointer dereference and out-of-array access) or possibly have unspecified other impact via crafted HEVC data.
Уязвимость мультимедийной библиотеки FFmpeg, связанная с разыменованием нулевого указателя, позволяющая нарушителю вызвать отказ в обслуживании
6.8 Medium
CVSS2
8.8 High
CVSS3