CVE-2022-48434

2023-03-2900:00:00

ubuntu.com

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

54.4%

JSON

libavcodec/pthread_frame.c in FFmpeg before 5.1.2, as used in VLC and other
products, leaves stale hwaccel state in worker threads, which allows
attackers to trigger a use-after-free and execute arbitrary code in some
circumstances (e.g., hardware re-initialization upon a mid-video SPS change
when Direct3D11 is used).

Notes

Author	Note
ccdm94	As of 2023-04-26 there is no public reproducer available for this issue, so there is no way to confirm through vulnerability testing that Xenial and Bionic are vulnerable to this issue. Xenial’s version of FFmpeg is 2.8. Upstream has only provided patches for versions 4.4.x, 5.0.x and 5.1.x. Considering that the code for pthread_frame.c (file altered by the patch) and for FFmpeg has changed significantly from version 2.8 to version 4.4.3, applying the 4.4.3 patch is very likely to introduce security issues and regressions. Because of the very intrusive nature of the backport, Xenial and Bionic (at version 3.4) will not be patched for this issue, and will therefore be marked as ignored.

Author

Note

ccdm94

As of 2023-04-26 there is no public reproducer available for this issue, so there is no way to confirm through vulnerability testing that Xenial and Bionic are vulnerable to this issue. Xenial’s version of FFmpeg is 2.8. Upstream has only provided patches for versions 4.4.x, 5.0.x and 5.1.x. Considering that the code for pthread_frame.c (file altered by the patch) and for FFmpeg has changed significantly from version 2.8 to version 4.4.3, applying the 4.4.3 patch is very likely to introduce security issues and regressions. Because of the very intrusive nature of the backport, Xenial and Bionic (at version 3.4) will not be patched for this issue, and will therefore be marked as ignored.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchffmpeg< 7:3.4.11-0ubuntu0.1+esm3UNKNOWN
ubuntu20.04noarchffmpeg< 7:4.2.7-0ubuntu0.1+esm3UNKNOWN
ubuntu22.04noarchffmpeg< 7:4.4.2-0ubuntu0.22.04.1+esm2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	ffmpeg	< 7:3.4.11-0ubuntu0.1+esm3	UNKNOWN
ubuntu	20.04	noarch	ffmpeg	< 7:4.2.7-0ubuntu0.1+esm3	UNKNOWN
ubuntu	22.04	noarch	ffmpeg	< 7:4.4.2-0ubuntu0.22.04.1+esm2	UNKNOWN