Lucene search
Veracode Vulnerability DatabaseVERACODE:3424HistoryFeb 03, 2017 - 5:56 a.m.
Denial Of Service (DoS) Through Out-of-bounds Heap Access
2017-02-0305:56:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
FFMpeg is vulnerable to denial of service (DoS) attacks and possibly other attacks. These attacks are possible through the decode_ihdr_chunk function which allows remote attackers to cause out-of-bounds heap access using an IDAT before an IHDR in a PNG file.
Related
cvelist
cvelist
CVE-2014-9317
2014-12-09 22:52:00
debiancve
debiancve
CVE-2014-9317
2014-12-09 23:59:00
prion
prion
Design/Logic Flaw
2014-12-09 23:59:00
ubuntucve
ubuntucve
CVE-2014-9317
2014-12-09 00:00:00
cve
cve
CVE-2014-9317
2014-12-09 23:59:00
openvas
openvas
Mageia: Security Advisory (MGASA-2015-0233)
2022-01-28 00:00:00
Mageia: Security Advisory (MGASA-2015-0245)
2022-01-28 00:00:00
Debian: Security Advisory (DLA-1611-2)
2018-12-20 00:00:00
freebsd
freebsd
avidemux26 -- multiple vulnerabilities in bundled FFmpeg
2015-05-18 00:00:00
ffmpeg -- multiple vulnerabilities
2015-03-12 00:00:00
nessus
nessus
mageia
mageia
Updated avidemux packages fix security vulnerabilities
2015-05-18 22:08:05
Updated ffmpeg package fixes security vulnerability
2015-06-19 16:33:05
osv
osv
libav - security update
2018-12-19 00:00:00
debian
debian
[SECURITY] [DLA 1611-1] libav security update
2018-12-20 21:52:50
gentoo
gentoo
FFmpeg: Multiple vulnerabilities
2016-03-12 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related for VERACODE:3424