3 matches found
Debian DSA-3996-1 : ffmpeg - security update
Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed Real, MV, RL2, ASF, Apple HLS, Phantom Cine, MXF, NSV, MOV or RTP H.264 files/streams are processed. %NASLMINLEVEL...
[SECURITY] [DSA 3996-1] ffmpeg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3996-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 10, 2017 https://www.debian.org/security/faq -...
CVE-2017-14054
CVE-2017-14054 concerns FFmpeg 3.3.3: in libavformat/rmdec.c, ivr_read_header() lacks an EOF check, so a crafted IVR file with a large len can cause a DoS by driving the first type==4 loop to consume excessive CPU resources. The issue is a remote-denial-of-service risk described in multiple advis...