7 matches found
SUSE CVE-2017-7862
FFmpeg before 2017-02-07 has an out-of-bounds write caused by a heap-based buffer overflow related to the decodeframe function in libavcodec/pictordec.c...
GLSA-201811-19 : Libav: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-201811-19 Libav: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Libav. Please review the CVE identifiers referenced below for details. Impact : A remote attacker, via a crafted Smacker stream, could caus...
Debian: Security Advisory (DLA-1142-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-4012-1 : libav - security update
Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. A full list of the changes is available at https://git.libav.org/?p=libav.git;a=blob;f=Changelog;hb=refs/tags/v11 .11 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...
[SECURITY] [DSA 4012-1] libav security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4012-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 31, 2017 https://www.debian.org/security/faq -...
openSUSE Security Update : ffmpeg (openSUSE-2017-524)
This update for ffmpeg to version 3.3 fixes several issues. These security issues were fixed : - CVE-2016-10190: Heap-based buffer overflow in libavformat/http.c in FFmpeg allowed remote web servers to execute arbitrary code via a negative chunk size in an HTTP response boo1022920 - CVE-2016-1019...
CVE-2017-7862
CVE-2017-7862 is a Libav/libavcodec vulnerability: an out-of-bounds write caused by a heap-based buffer overflow in decode_frame (libavcodec/pictordec.c). Public advisories (Debian DSA-4012, OpenVAS entries) confirm this affects multiple demuxers/decoders and can lead to denial of service or cras...