Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:9 a.m.10 views

CVE-2019-11338

libavcodec/hevcdec.c in FFmpeg 3.4 and 4.1.2 mishandles detection of duplicate first slices, which allows remote attackers to cause a denial of service NULL pointer dereference and out-of-array access or possibly have unspecified other impact via crafted HEVC data...

8.8CVSS7.7AI score0.02354EPSS
Exploits0References1
Cloud Foundry
Cloud Foundry
added 2020/08/27 12:0 a.m.38 views

USN-4431-1: FFmpeg vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that FFmpeg incorrectly verified empty audio packets or HEVC data. An attacker could possibly use this issue to cause a denial of service via a crafted file. This issue only affected...

10CVSS8AI score0.03756EPSS
Exploits4Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/07/23 12:0 a.m.66 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : FFmpeg vulnerabilities (USN-4431-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4431-1 advisory. It was discovered that FFmpeg incorrectly verified empty audio packets or HEVC data. An attacker could possibly use this issue to...

10CVSS6.7AI score0.03756EPSS
Exploits4References10
Ubuntu
Ubuntu
added 2020/07/22 4:18 p.m.98 views

USN-4431-1: FFmpeg vulnerabilities

It was discovered that FFmpeg incorrectly verified empty audio packets or HEVC data. An attacker could possibly use this issue to cause a denial of service via a crafted file. This issue only affected Ubuntu 16.04 LTS, as it was already fixed in Ubuntu 18.04 LTS. For more information see:...

10CVSS6.7AI score0.03756EPSS
Exploits4
OpenVAS
OpenVAS
added 2019/06/01 12:0 a.m.25 views

Debian: Security Advisory (DLA-1809-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.6AI score0.03266EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/05/30 12:0 a.m.50 views

Debian DLA-1809-1 : libav security update

Two more security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. CVE-2018-15822 The flvwritepacket function in libavformat/flvenc.c in libav did not check for an empty audio packet, leading to an assertion failure. CVE-2019-11338 libavcodec/hevcdec.c...

8.8CVSS7AI score0.03266EPSS
Exploits0References4
Debian
Debian
added 2019/05/29 7:53 a.m.164 views

[SECURITY] [DLA 1809-1] libav security update

Package : libav Version : 6:11.12-1deb8u7 CVE ID : CVE-2018-15822 CVE-2019-11338 Two more security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. CVE-2018-15822 The flvwritepacket function in libavformat/flvenc.c in libav did not check for an empty...

8.8CVSS6.9AI score0.03266EPSS
Exploits0
Debian
Debian
added 2019/05/22 9:37 p.m.215 views

[SECURITY] [DSA 4449-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4449-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff May 22, 2019 https://www.debian.org/security/faq -...

8.8CVSS8.9AI score0.04244EPSS
Exploits0
CVE
CVE
added 2019/04/18 11:52 p.m.192 views

CVE-2019-11338

CVE-2019-11338 affects FFmpeg/libav (FFmpeg 3.4 and 4.1.2) where libavcodec/hevcdec.c mishandles detection of duplicate first slices in crafted HEVC data. This can cause a NULL pointer dereference and out-of-bounds access, leading to a denial of service and possibly other impact. Public advisorie...

8.8CVSS8.9AI score0.02354EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder