Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:28984
HistoryJan 14, 2021 - 2:12 a.m.

Denial Of Service (DoS)

2021-01-1402:12:28
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
17
denial of service
out-of-bounds write
application crash
libavformat

EPSS

0.003

Percentile

68.2%

track_header is vulnerable to denial of service. An out-of-bounds write in libavformat/vividas.c due to incorrect extradata packing allows an attacker to crash the application.

Affected configurations

Vulners
Node
-ffmpeg\Matchsid7\4.3.1-5
OR
-ffmpeg\Matchbullseye7\4.3.1-5
OR
-ffmpeg\Match3.134.3.1-r3
OR
-ffmpeg\Match3.134.3.1-r4
OR
-ffmpeg\Matchedge4.2.3-r1
OR
-ffmpeg\Matchedge4.2.2-r2
OR
-ffmpeg\Matchedge4.2.2-r1
OR
-ffmpeg\Matchhirsute7\4.3.1-5ubuntu1
OR
-ffmpeg\Matchfocal7\4.2.2-1ubuntu1
OR
-ffmpeg\Matchfocal7\4.2.4-1ubuntu0.1
VendorProductVersionCPE
-ffmpeg\sidcpe:2.3:a:-:ffmpeg\:sid:7\:4.3.1-5:*:*:*:*:*:*:*
-ffmpeg\bullseyecpe:2.3:a:-:ffmpeg\:bullseye:7\:4.3.1-5:*:*:*:*:*:*:*
-ffmpeg\3.13cpe:2.3:a:-:ffmpeg\:3.13:4.3.1-r3:*:*:*:*:*:*:*
-ffmpeg\3.13cpe:2.3:a:-:ffmpeg\:3.13:4.3.1-r4:*:*:*:*:*:*:*
-ffmpeg\edgecpe:2.3:a:-:ffmpeg\:edge:4.2.3-r1:*:*:*:*:*:*:*
-ffmpeg\edgecpe:2.3:a:-:ffmpeg\:edge:4.2.2-r2:*:*:*:*:*:*:*
-ffmpeg\edgecpe:2.3:a:-:ffmpeg\:edge:4.2.2-r1:*:*:*:*:*:*:*
-ffmpeg\hirsutecpe:2.3:a:-:ffmpeg\:hirsute:7\:4.3.1-5ubuntu1:*:*:*:*:*:*:*
-ffmpeg\focalcpe:2.3:a:-:ffmpeg\:focal:7\:4.2.2-1ubuntu1:*:*:*:*:*:*:*
-ffmpeg\focalcpe:2.3:a:-:ffmpeg\:focal:7\:4.2.4-1ubuntu0.1:*:*:*:*:*:*:*