Lucene search

K

RedhatCVELIST:CVE-2012-0856

HistoryAug 20, 2012 - 7:00 p.m.

CVE-2012-0856

2012-08-2019:00:00

redhat

www.cve.org

6.9 Medium

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.0%

Heap-based buffer overflow in the MPV_frame_start function in libavcodec/mpegvideo.c in FFmpeg before 0.9.1, when the lowres option is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted H263 media file. NOTE: this vulnerability exists because of a regression error.

References

ffmpeg.org/security.html

ffmpeg.org/trac/ffmpeg/ticket/757

git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=21270cffaeab2f67a613907516b2b0cd6c9eacf4

www.openwall.com/lists/oss-security/2012/02/01/11

www.openwall.com/lists/oss-security/2012/02/14/4

exchange.xforce.ibmcloud.com/vulnerabilities/78928

6.9 Medium

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.0%

Related for CVELIST:CVE-2012-0856

nvd1 prion1 cve1 ubuntucve1 debiancve1