Lucene search
K

58 matches found

UbuntuCve
UbuntuCve
added 2019/09/19 9:15 p.m.44 views

CVE-2019-9720

A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c misuses snprintf...

7.1CVSS6.9AI score0.01092EPSS
Exploits1References3
Prion
Prion
added 2019/09/19 9:15 p.m.13 views

Format string

In Libav 12.3, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c has a complex format argument to sscanf...

7.1CVSS6.2AI score0.01276EPSS
Exploits1References2Affected Software1
UbuntuCve
UbuntuCve
added 2019/09/19 9:15 p.m.42 views

CVE-2019-9719

A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c misuses snprintf. NOTE: Third parties dispute that this is a vulnerability because “no evidence of a...

8.8CVSS7.5AI score0.02025EPSS
Exploits1References5
Prion
Prion
added 2019/09/19 9:15 p.m.14 views

Stack overflow

A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c misuses snprintf...

7.1CVSS6.5AI score0.01092EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2019/09/19 9:15 p.m.2 views

UBUNTU-CVE-2019-9720

A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c misuses snprintf...

6.5CVSS7AI score0.01092EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2019/09/19 9:15 p.m.48 views

CVE-2019-9717

In Libav 12.3, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c has a complex format argument to sscanf...

7.1CVSS6.6AI score0.01276EPSS
Exploits1References3
Prion
Prion
added 2019/09/19 9:15 p.m.15 views

Stack overflow

DISPUTED A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c misuses snprintf. NOTE: Third parties dispute that this is a vulnerability because “no evidence o...

6.8CVSS8.7AI score0.02025EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2019/09/19 9:15 p.m.2 views

UBUNTU-CVE-2019-9717

In Libav 12.3, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c has a complex format argument to sscanf...

6.5CVSS6.6AI score0.01276EPSS
Exploits1References4
OSV
OSV
added 2019/09/19 9:15 p.m.3 views

UBUNTU-CVE-2019-9719

DISPUTED A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c misuses snprintf. NOTE: Third parties dispute that this is a vulnerability because “no evidence o...

8.8CVSS6.2AI score0.02025EPSS
Exploits1References6
CVE
CVE
added 2019/09/19 8:37 p.m.137 views

CVE-2019-9720

CVE-2019-9720 affects Libav 12.3: a stack-based buffer overflow in the subtitle decoder due to incorrect use of snprintf in libavcodec/srtdec.c (srt_to_ass). Exploitation via a crafted Matroska video file can corrupt the stack. No explicit remediation details are given in the provided documents; ...

7.1CVSS6.5AI score0.01092EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/09/19 8:37 p.m.20 views

CVE-2019-9720

A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c misuses snprintf...

6.6AI score0.01092EPSS
Exploits1References2
CVE
CVE
added 2019/09/19 8:32 p.m.150 views

CVE-2019-9719

Libav 12.3 contains a stack-based buffer overflow in the subtitle decoder (srt_to_ass in libavcodec/srtdec.c) triggered by crafted Matroska video files; the issue stems from misusing snprintf. Multiple sources (Red Hat, SUSE, Ubuntu, OSV, and others) describe a vulnerability with claims of disput...

8.8CVSS8.7AI score0.02025EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2019/09/19 8:28 p.m.140 views

CVE-2019-9717

CVE-2019-9717 affects Libav 12.3, specifically the subtitle decoder in libavcodec/srtdec.c (function srt_to_ass). A crafted Matroska video file can cause a denial of service by hogging CPU, due to a complex format argument to sscanf in srt_to_ass. The available documents provide the vulnerability...

7.1CVSS6.2AI score0.01276EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2019/09/19 8:28 p.m.26 views

CVE-2019-9717

In Libav 12.3, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c has a complex format argument to sscanf...

6.3AI score0.01276EPSS
Exploits1References2
CNVD
CNVD
added 2019/09/19 12:0 a.m.1 views

Libav Buffer Overflow Vulnerability (CNVD-2019-35776)

Libav is Libav team's set of cross-platform audio and video can be recorded, converted solution, which includes a libavcodec encoder. A buffer overflow vulnerability exists in the subtitle decoder in Libav version 12.3, which can be exploited by an attacker to cause, among other things, a buffer...

8.8CVSS7.4AI score0.02025EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2019/09/19 12:0 a.m.4 views

PT-2019-19819 · FFmpeg · Libav

Name of the Vulnerable Software and Affected Versions: Libav version 12.3 Description: A stack-based buffer overflow issue exists in the subtitle decoder of Libav, potentially allowing attackers to corrupt the stack via a crafted video file in Matroska format. This issue arises from the misuse of...

8.8CVSS7.5AI score0.02025EPSS
Exploits1References9
CNVD
CNVD
added 2019/09/19 12:0 a.m.2 views

Libav Buffer Overflow Vulnerability (CNVD-2019-35787)

Libav is Libav team's set of cross-platform audio and video can be recorded, converted solution, which includes a libavcodec encoder. A buffer overflow vulnerability exists in the subtitle decoder in Libav version 12.3, which can be exploited by an attacker to cause, among other things, a buffer...

7.1CVSS7.4AI score0.01092EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2019/05/09 7:19 a.m.30 views

CVE-2019-9718

In FFmpeg 3.2 and 4.1, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because ffhtmlmarkuptoass in libavcodec/htmlsubtitles.c has a complex format argument to sscanf...

6.5CVSS5.1AI score0.01565EPSS
Exploits0References3
OSV
OSV
added 2019/03/12 9:29 a.m.24 views

CVE-2019-9721

A denial of service in the subtitle decoder in FFmpeg 3.2 and 4.1 allows attackers to hog the CPU via a crafted video file in Matroska format, because handleopenbrace in libavcodec/htmlsubtitles.c has a complex format argument to sscanf...

6.5CVSS6.4AI score
Exploits0References4
NVD
NVD
added 2019/03/12 9:29 a.m.23 views

CVE-2019-9718

In FFmpeg 3.2 and 4.1, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because ffhtmlmarkuptoass in libavcodec/htmlsubtitles.c has a complex format argument to sscanf...

6.5CVSS7AI score0.01565EPSS
Exploits0References6
Rows per page
Query Builder