8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
54.4%
libavcodec/pthread_frame.c in FFmpeg before 5.1.2, as used in VLC and other
products, leaves stale hwaccel state in worker threads, which allows
attackers to trigger a use-after-free and execute arbitrary code in some
circumstances (e.g., hardware re-initialization upon a mid-video SPS change
when Direct3D11 is used).
Author | Note |
---|---|
ccdm94 | As of 2023-04-26 there is no public reproducer available for this issue, so there is no way to confirm through vulnerability testing that Xenial and Bionic are vulnerable to this issue. Xenial’s version of FFmpeg is 2.8. Upstream has only provided patches for versions 4.4.x, 5.0.x and 5.1.x. Considering that the code for pthread_frame.c (file altered by the patch) and for FFmpeg has changed significantly from version 2.8 to version 4.4.3, applying the 4.4.3 patch is very likely to introduce security issues and regressions. Because of the very intrusive nature of the backport, Xenial and Bionic (at version 3.4) will not be patched for this issue, and will therefore be marked as ignored. |
git.ffmpeg.org/gitweb/ffmpeg.git/commit/35aa7e70e7ec350319e7634a30d8d8aa1e6ecdda (n5.1.2)
git.ffmpeg.org/gitweb/ffmpeg.git/commit/cc867f2c09d2b69cee8a0eccd62aff002cbbfe11 (n6.1-dev)
launchpad.net/bugs/cve/CVE-2022-48434
news.ycombinator.com/item?id=35356201
nvd.nist.gov/vuln/detail/CVE-2022-48434
security-tracker.debian.org/tracker/CVE-2022-48434
ubuntu.com/security/notices/USN-6449-1
wrv.github.io/h26forge.pdf
www.cve.org/CVERecord?id=CVE-2022-48434
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.002 Low
EPSS
Percentile
54.4%