Lucene search
+L

6 matches found

bdu_fstec
bdu_fstec
added 2017/09/15 12:0 a.m.8 views

The vulnerability of the cine_read_header function in the FFmpeg multimedia library allows a attacker to trigger memory consumption and service failure.

The vulnerability of the cinereadheader function in the FFmpeg multimedia library is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to induce memory consumption and service failures by using a specially created CINE file. This file requires a larg...

7.1CVSS7AI score0.01782EPSS
Exploits0References3Affected Software1
osv
osv
added 2017/08/31 3:29 p.m.23 views

CVE-2017-14059

In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...

6.5CVSS6.5AI score
Exploits0References3
prion
prion
added 2017/08/31 3:29 p.m.20 views

Design/Logic Flaw

In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...

7.1CVSS7.1AI score0.01782EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2017/08/31 3:0 p.m.29 views

CVE-2017-14059

In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...

7.1AI score0.01782EPSS
Exploits0References3
debiancve
debiancve
added 2017/08/31 3:0 p.m.43 views

CVE-2017-14059

In FFmpeg 3.3.3, a DoS in cinereadheader due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume hu...

7.1CVSS7.3AI score0.01782EPSS
Exploits0
cve
cve
added 2017/08/31 3:0 p.m.119 views

CVE-2017-14059

FFmpeg 3.3.3 is affected by CVE-2017-14059, a denial-of-service in cine_read_header() caused by missing EOF checks during CINE header parsing. A crafted CINE file with a large duration field but insufficient backing data can trigger an image-offset parsing loop that consumes excessive CPU and mem...

7.1CVSS7AI score0.01782EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder