Lucene search
UbuntuUSN-2244-1HistoryJun 11, 2014 - 12:00 a.m.
Libav vulnerability
2014-06-1100:00:00
ubuntu.com
28
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.6
Confidence
High
EPSS
0.016
Percentile
87.3%
Releases
- Ubuntu 13.10
- Ubuntu 12.04
Packages
- libav - Multimedia player, server, encoder and transcoder
Details
It was discovered that Libav incorrectly handled certain malformed media
files. If a user were tricked into opening a crafted media file, an
attacker could cause a denial of service via application crash, or possibly
execute arbitrary code with the privileges of the user invoking the
program.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 13.10 | noarch | libavformat53 | < 6:0.8.12-0ubuntu0.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | ffmpeg | < 6:0.8.12-0ubuntu0.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libav-tools | < 6:0.8.12-0ubuntu0.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libavcodec-dev | < 6:0.8.12-0ubuntu0.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libavcodec53 | < 6:0.8.12-0ubuntu0.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libavdevice-dev | < 6:0.8.12-0ubuntu0.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libavdevice53 | < 6:0.8.12-0ubuntu0.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libavfilter-dev | < 6:0.8.12-0ubuntu0.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libavfilter2 | < 6:0.8.12-0ubuntu0.13.10.1 | UNKNOWN |
| Ubuntu | 13.10 | noarch | libavformat-dev | < 6:0.8.12-0ubuntu0.13.10.1 | UNKNOWN |
References
Related
prion
prion
Code injection
2014-06-06 14:55:00
cve
cve
CVE-2014-3984
2014-06-06 14:55:05
openvas
openvas
Ubuntu: Security Advisory (USN-2244-1)
2014-06-17 00:00:00
cvelist
cvelist
CVE-2014-3984
2014-06-06 14:00:00
ubuntucve
ubuntucve
CVE-2014-3984
2014-06-06 00:00:00
nvd
nvd
CVE-2014-3984
2014-06-06 14:55:05
securityvulns
securityvulns
libav multiple security vulnerabilities
2014-06-09 00:00:00
nessus
nessus
Ubuntu 12.04 LTS / 13.10 : libav vulnerability (USN-2244-1)
2014-06-12 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7.6
Confidence
High
EPSS
0.016
Percentile
87.3%
Related for USN-2244-1