Lucene search
K

11 matches found

Cloud Foundry
Cloud Foundry
added 2022/07/28 12:0 a.m.56 views

USN-5472-1: FFmpeg vulnerabilities | Cloud Foundry

usn-5472-1 Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that FFmpeg would attempt to divide by zero when using Linear Predictive Coding LPC or AAC codecs. An attacker could possibly use this issue to cause a denial of service. This...

9.8CVSS8.9AI score0.31591EPSS
Exploits29Affected Software2
Tenable Nessus
Tenable Nessus
added 2022/06/09 12:0 a.m.103 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : FFmpeg vulnerabilities (USN-5472-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5472-1 advisory. It was discovered that FFmpeg would attempt to divide by zero when using Linear Predictive Coding LPC or AAC codecs. An attacker...

9.8CVSS7.4AI score0.31591EPSS
Exploits30References35
OpenVAS
OpenVAS
added 2021/10/21 12:0 a.m.28 views

Debian: Security Advisory (DSA-4990-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.0269EPSS
Exploits28References4
Tenable Nessus
Tenable Nessus
added 2021/10/20 12:0 a.m.45 views

Debian DSA-4990-1 : ffmpeg - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-4990 advisory. - FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/lpc.h, which allows a remote malicious user to cause a Denial of Service. CVE-2020-20445 - FFmpe...

9.8CVSS7AI score0.0269EPSS
Exploits28References65
Debian
Debian
added 2021/10/19 6:51 p.m.36 views

[SECURITY] [DSA 4990-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4990-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 19, 2021 https://www.debian.org/security/faq -...

9.8CVSS9.2AI score0.0269EPSS
Exploits28
Tenable Nessus
Tenable Nessus
added 2021/08/23 12:0 a.m.31 views

Debian DLA-2742-1 : ffmpeg - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2742 advisory. - Buffer Overflow vulnerability exists in FFmpeg 4.1 via apngdoinverseblend in libavcodec/pngenc.c, which could let a remote malicious user cause a Denial of Servi...

8.8CVSS7.2AI score0.02468EPSS
Exploits12References33
Debian
Debian
added 2021/08/15 4:58 a.m.108 views

[SECURITY] [DLA 2742-1] ffmpeg security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2742-1 [email protected] https://www.debian.org/lts/security/ Anton Gladky August 14, 2021 https://wiki.debian.org/LTS -...

8.8CVSS8.6AI score0.02468EPSS
Exploits12
Tenable Nessus
Tenable Nessus
added 2021/07/15 12:0 a.m.32 views

SUSE SLED15: ffmpeg / libavcodec-devel / libavcodec57 / libavdevice57 / etc (SUSE-SU-2021:2322-1)

The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2322-1 advisory. - CVE-2020-13904: Fixed use-after-free via a crafted EXTINF duration in an m3u8 file bsc1172640. - CVE-2020-21041: Fixed buffer overfl...

9.8CVSS7AI score0.02468EPSS
Exploits20References69
OpenVAS
OpenVAS
added 2021/07/15 12:0 a.m.23 views

openSUSE: Security Advisory for ffmpeg (openSUSE-SU-2021:2322-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.8AI score0.02468EPSS
Exploits20References2
UbuntuCve
UbuntuCve
added 2021/05/27 7:15 p.m.28 views

CVE-2020-22016

A heap-based Buffer Overflow vulnerability in FFmpeg 4.2 at libavcodec/getbits.h when writing .mov files, which might lead to memory corruption and other potential consequences...

8.8CVSS6.8AI score0.01592EPSS
Exploits1References4
CVE
CVE
added 2021/05/27 6:29 p.m.159 views

CVE-2020-22016

CVE-2020-22016 is a heap-based Buffer Overflow in FFmpeg 4.2, specifically in libavcodec/get_bits.h during MOV writing, which can lead to memory corruption. The initial description and connected documents confirm FFmpeg 4.2 as affected and the .mov writing path as the trigger. The provided materi...

8.8CVSS9.2AI score0.01592EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder