SUSE CVE-2017-1000460

In line libavcodec/h264dec.c:500 in libavv13dev0, ffmpegn3.4, chromium56 prior Feb 13, 2017, the return value of initgetbits is ignored and getuegolomb&gb is called on an uninitialized getbits context, which causes a NULL deref exception...

Debian: Security Advisory (DLA-1740-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-1740-1 : libav security update

Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. CVE-2015-1872 The ffmjpegdecodesof function in libavcodec/mjpegdec.c did not validate the number of components in a JPEG-LS Start Of Frame segment, which allowed remote attackers to caus...

[SECURITY] [DLA 1740-1] libav security update

Package : libav Version : 6:11.12-1deb8u6 CVE ID : CVE-2015-1872 CVE-2017-14058 CVE-2017-1000460 CVE-2018-6392 CVE-2018-1999012 Debian Bug : Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. CVE-2015-1872 The ffmjpegdecodesof function i...

CVE-2017-1000460

In line libavcodec/h264dec.c:500 in libavv13dev0, ffmpegn3.4, chromium56 prior Feb 13, 2017, the return value of initgetbits is ignored and getuegolomb&gb is called on an uninitialized getbits context, which causes a NULL deref exception...

CVE-2017-1000460

CVE-2017-1000460 affects libav (libavcodec/h264dec.c) and is described across multiple sources as a NULL dereference caused by calling get_ue_golomb(&gb) on an uninitialized get_bits context after ignoring the return value of init_get_bits in get_last_needed_nal() (libavformat/h264.c). The issue ...