Lucene search
HistorySep 06, 2015 - 2:59 a.m.
CVE-2015-6821
cve-2015-6821
ffmpeg
libavcodec
mpegvideo
denial of service
invalid pointer access
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.3 High
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
74.9%
The ff_mpv_common_init function in libavcodec/mpegvideo.c in FFmpeg before 2.7.2 does not properly maintain the encoding context, which allows remote attackers to cause a denial of service (invalid pointer access) or possibly have unspecified other impact via crafted MPEG data.
Affected configurations
Node
ffmpegffmpegRange≤2.7.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| ffmpeg:ffmpeg | ffmpeg | le | 2.7.1 |
Related
debiancve
debiancve
CVE-2015-6821
2015-09-06 02:59:04
cvelist
cvelist
CVE-2015-6821
2015-09-06 01:00:00
ubuntucve
ubuntucve
CVE-2015-6821
2015-09-06 00:00:00
prion
prion
Code injection
2015-09-06 02:59:00
nvd
nvd
CVE-2015-6821
2015-09-06 02:59:04
veracode
veracode
Denial Of Service (DoS)
2017-02-08 05:28:47
freebsd
freebsd
ffmpeg -- multiple vulnerabilities
2015-09-05 00:00:00
nessus
nessus
openvas
openvas
Mageia: Security Advisory (MGASA-2016-0018)
2016-01-15 00:00:00
Debian: Security Advisory (DLA-1611-2)
2018-12-20 00:00:00
Debian: Security Advisory (DLA-1611)
2023-03-08 00:00:00
osv
osv
libav - security update
2018-12-19 00:00:00
mageia
mageia
Updated ffmpeg packages fix security vulnerabilities
2016-01-15 04:52:38
debian
debian
[SECURITY] [DLA 1611-1] libav security update
2018-12-20 21:51:33
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.3 High
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
74.9%
Related for CVE-2015-6821