CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
Percentile
82.4%
The seg_write_packet function in libavformat/segment.c in ffmpeg 2.1.4 and
earlier does not free the correct memory location, which allows remote
attackers to cause a denial of service (“invalid memory handler”) and
possibly execute arbitrary code via a crafted video that triggers a use
after free.
Author | Note |
---|---|
tyhicks | from what I can tell, libav 9.0 to 11.1 is affected with upstream git commit eb447d515956b3ce182d9750083131735f00324c introducing the issue |