Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2015-3417
HistoryApr 24, 2015 - 12:00 a.m.

CVE-2015-3417

2015-04-2400:00:00
ubuntu.com
ubuntu.com
15

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.017 Low

EPSS

Percentile

87.6%

JSON

Use-after-free vulnerability in the ff_h264_free_tables function in
libavcodec/h264.c in FFmpeg before 2.3.6 allows remote attackers to cause a
denial of service or possibly have unspecified other impact via crafted
H.264 data in an MP4 file, as demonstrated by an HTML VIDEO element that
references H.264 data.

Notes

Author Note
mdeslaur doesn’t appear to affected libav in precise
OSVersionArchitecturePackageVersionFilename
ubuntu14.04noarchlibav< 6:9.20-0ubuntu0.14.04.1+esm1) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN

Related

prion 1
debiancve 1
freebsd 2
nessus 4
veracode 1
cve 1
cvelist 1
debian 1
openvas 4
securityvulns 2
osv 1
gentoo 1
mageia 2
prion
prion
Design/Logic Flaw
2015-04-24 17:59:00
debiancve
debiancve
CVE-2015-3417
2015-04-24 17:59:00
freebsd
freebsd
ffmpeg -- use-after-free
2014-12-19 00:00:00
avidemux26 -- multiple vulnerabilities in bundled FFmpeg
2015-05-18 00:00:00
nessus
nessus
FreeBSD : ffmpeg -- use-after-free (da434a78-e342-4d9a-87e2-7497e5f117ba)
2015-09-02 00:00:00
Debian DSA-3288-1 : libav - security update
2015-06-15 00:00:00
FreeBSD : avidemux26 -- multiple vulnerabilities in bundled FFmpeg (022255be-0895-11e5-a242-5404a68ad561)
2015-06-02 00:00:00
veracode
veracode
Denial Of Service (DoS)
2017-02-09 02:28:46
cve
cve
CVE-2015-3417
2015-04-24 17:59:00
cvelist
cvelist
CVE-2015-3417
2015-04-24 17:00:00
debian
debian
[SECURITY] [DSA 3288-1] libav security update
2015-06-13 17:16:51
openvas
openvas
Debian: Security Advisory (DSA-3288-1)
2015-06-12 00:00:00
Debian Security Advisory DSA 3288-1 (libav - security update)
2015-06-13 00:00:00
Mageia: Security Advisory (MGASA-2015-0233)
2022-01-28 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3288-1] libav security update
2015-06-21 00:00:00
libav / ffmpeg security vulnerabilities
2015-06-21 00:00:00
osv
osv
libav - security update
2015-06-13 00:00:00
gentoo
gentoo
libav: Multiple vulnerabilities
2017-05-09 00:00:00
mageia
mageia
Updated avidemux packages fix security vulnerabilities
2015-05-18 22:08:05
Updated ffmpeg package fixes security vulnerability
2015-06-19 16:33:05

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.017 Low

EPSS

Percentile

87.6%

JSON
Related for UB:CVE-2015-3417
prion1debiancve1freebsd2nessus4veracode1cve1cvelist1debian1openvas4securityvulns2osv1gentoo1mageia2