Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2019/02/07 12:0 a.m.60 views

Debian DLA-1654-1 : libav security update

Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. CVE-2014-8542 libavcodec/utils.c omitted a certain codec ID during enforcement of alignment, which allowed remote attackers to cause a denial of ervice out-of-bounds access or possibly...

9.8CVSS7.1AI score0.02575EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2017/10/11 12:0 a.m.39 views

Debian DSA-3996-1 : ffmpeg - security update

Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed Real, MV, RL2, ASF, Apple HLS, Phantom Cine, MXF, NSV, MOV or RTP H.264 files/streams are processed. %NASLMINLEVEL...

8.8CVSS6.8AI score0.02712EPSS
Exploits0References15
Debian
Debian
added 2017/10/10 7:23 p.m.41 views

[SECURITY] [DSA 3996-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3996-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 10, 2017 https://www.debian.org/security/faq -...

8.8CVSS8.2AI score0.02712EPSS
Exploits0
ArchLinux
ArchLinux
added 2017/09/28 12:0 a.m.36 views

[ASA-201709-23] ffmpeg2.8: denial of service

Arch Linux Security Advisory ASA-201709-23 ========================================== Severity: Medium Date : 2017-09-28 CVE-ID : CVE-2017-14055 CVE-2017-14056 CVE-2017-14057 CVE-2017-14058 CVE-2017-14059 CVE-2017-14169 CVE-2017-14170 CVE-2017-14171 CVE-2017-14225 Package : ffmpeg2.8 Type : denia...

8.8CVSS1AI score0.02575EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2017/09/18 12:0 a.m.36 views

openSUSE Security Update : ffmpeg / ffmpeg2 (openSUSE-2017-1068)

This update introduces lame and twolame. For ffmpeg2 it updates to version 2.8.13 and fixes several issues. These security issues were fixed : - CVE-2017-14058: The readdata function in libavformat/hls.c did not restrict reload attempts for an insufficient list, which allowed remote attackers to...

8.8CVSS6.7AI score0.02575EPSS
Exploits0References28
Tenable Nessus
Tenable Nessus
added 2017/09/18 12:0 a.m.36 views

openSUSE Security Update : ffmpeg / ffmpeg2 (openSUSE-2017-1067)

This update introduces lame and twolame. For ffmpeg2 it updates to version 2.8.13 and fixes several issues. These security issues were fixed : - CVE-2017-14058: The readdata function in libavformat/hls.c did not restrict reload attempts for an insufficient list, which allowed remote attackers to...

9.8CVSS7.9AI score0.08359EPSS
Exploits1References41
UbuntuCve
UbuntuCve
added 2017/09/07 6:29 a.m.31 views

CVE-2017-14169

In the mxfreadprimerpack function in libavformat/mxfdec.c in FFmpeg 3.3.3 - 2.4, an integer signedness error might occur when a crafted file, which claims a large "itemnum" field such as 0xffffffff, is provided. As a result, the variable "itemnum" turns negative, bypassing the check for a large...

8.8CVSS6.8AI score0.02575EPSS
Exploits0References2
CVE
CVE
added 2017/09/07 6:0 a.m.127 views

CVE-2017-14169

CVE-2017-14169 affects FFmpeg/libavformat: specifically the mxf_read_primer_pack function in libavformat/mxfdec.c. The description documents an integer signedness error when a crafted MXF file provides a large item_num (e.g., 0xffffffff), causing item_num to become negative and bypassing the chec...

8.8CVSS8.3AI score0.02575EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2017/09/07 6:0 a.m.32 views

CVE-2017-14169

In the mxfreadprimerpack function in libavformat/mxfdec.c in FFmpeg 3.3.3 - 2.4, an integer signedness error might occur when a crafted file, which claims a large "itemnum" field such as 0xffffffff, is provided. As a result, the variable "itemnum" turns negative, bypassing the check for a large...

8.8CVSS8.6AI score0.02575EPSS
Exploits0
Rows per page
Query Builder