CVE-2013-2495

2013-03-0900:00:00

ubuntu.com

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

73.1%

JSON

The iff_read_header function in iff.c in libavformat in FFmpeg through
1.1.3 does not properly handle data sizes for Interchange File Format (IFF)
data during operations involving a CMAP chunk or a video codec, which
allows remote attackers to cause a denial of service (integer overflow,
out-of-bounds array access, and application crash) or possibly have
unspecified other impact via a crafted header.

Bugs

<https://bugs.launchpad.net/bugs/1163354>

Notes

Author	Note
mdeslaur	ffmpeg-extra in multiverse needs to have matching version libav-extra is built with tarball produced by libav package ignoring releases near EoL. New version not available from upstream.

OSVersionArchitecturePackageVersionFilename
ubuntu12.04noarchlibav< 4:0.8.6-0ubuntu0.12.04.1UNKNOWN
ubuntu12.10noarchlibav< 6:0.8.6-0ubuntu0.12.10.1UNKNOWN
ubuntu12.04noarchlibav-extra< 4:0.8.6ubuntu0.12.04.1UNKNOWN
ubuntu12.10noarchlibav-extra< 6:0.8.6ubuntu0.12.10.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	12.04	noarch	libav	< 4:0.8.6-0ubuntu0.12.04.1	UNKNOWN
ubuntu	12.10	noarch	libav	< 6:0.8.6-0ubuntu0.12.10.1	UNKNOWN
ubuntu	12.04	noarch	libav-extra	< 4:0.8.6ubuntu0.12.04.1	UNKNOWN
ubuntu	12.10	noarch	libav-extra	< 6:0.8.6ubuntu0.12.10.1	UNKNOWN