Lucene search
Ubuntu.comUB:CVE-2015-6821HistorySep 06, 2015 - 12:00 a.m.
CVE-2015-6821
2015-09-0600:00:00
ubuntu.com
ubuntu.com
7
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
74.9%
The ff_mpv_common_init function in libavcodec/mpegvideo.c in FFmpeg before
2.7.2 does not properly maintain the encoding context, which allows remote
attackers to cause a denial of service (invalid pointer access) or possibly
have unspecified other impact via crafted MPEG data.
Notes
| Author | Note |
|---|---|
| mdeslaur | as of 2016-03-11, no equivalent fix in libav code is different in precise, probably ok |
| ebarretto | as of 2018-09-27, no equivalent fix in libav |
Related
debiancve
debiancve
CVE-2015-6821
2015-09-06 02:59:04
cve
cve
CVE-2015-6821
2015-09-06 02:59:04
prion
prion
Code injection
2015-09-06 02:59:00
nvd
nvd
CVE-2015-6821
2015-09-06 02:59:04
cvelist
cvelist
CVE-2015-6821
2015-09-06 01:00:00
veracode
veracode
Denial Of Service (DoS)
2017-02-08 05:28:47
nessus
nessus
freebsd
freebsd
ffmpeg -- multiple vulnerabilities
2015-09-05 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2016-0018)
2016-01-15 00:00:00
Debian: Security Advisory (DLA-1611-2)
2018-12-20 00:00:00
Debian: Security Advisory (DLA-1611)
2023-03-08 00:00:00
osv
osv
libav - security update
2018-12-19 00:00:00
mageia
mageia
Updated ffmpeg packages fix security vulnerabilities
2016-01-15 04:52:38
debian
debian
[SECURITY] [DLA 1611-1] libav security update
2018-12-20 21:51:33
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
74.9%
Related for UB:CVE-2015-6821