Lucene search
Veracode Vulnerability DatabaseVERACODE:5032HistorySep 08, 2017 - 1:16 a.m.
Denial Of Service (DoS) Through CPU Consumption
2017-09-0801:16:57
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3
0.002 Low
EPSS
Percentile
58.9%
FFmpeg is vulnerable to denial of service (DoS) attacks. A malicious user can pass a MXF file without an End of File (EoF) terminator to the application to cause a big loop that would consume large amounts of CPU resources.
Related
cvelist
cvelist
CVE-2017-14170
2017-09-07 06:00:00
debiancve
debiancve
CVE-2017-14170
2017-09-07 06:29:00
nvd
nvd
CVE-2017-14170
2017-09-07 06:29:00
osv
osv
CVE-2017-14170
2017-09-07 06:29:00
ffmpeg - security update
2017-10-10 00:00:00
libav - security update
2019-01-07 00:00:00
ubuntucve
ubuntucve
CVE-2017-14170
2017-09-07 00:00:00
alpinelinux
alpinelinux
CVE-2017-14170
2017-09-07 06:29:00
prion
prion
Design/Logic Flaw
2017-09-07 06:29:00
cve
cve
CVE-2017-14170
2017-09-07 06:29:00
archlinux
archlinux
[ASA-201709-23] ffmpeg2.8: denial of service
2017-09-28 00:00:00
[ASA-201709-10] ffmpeg: denial of service
2017-09-15 00:00:00
nessus
nessus
openSUSE Security Update : ffmpeg / ffmpeg2 (openSUSE-2017-1068)
2017-09-18 00:00:00
FreeBSD : FFmpeg -- multiple vulnerabilities (ed73829d-af6d-11e7-a633-009c02a2ab30)
2017-10-16 00:00:00
Debian DLA-1630-1 : libav security update
2019-01-08 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-1630-1)
2019-01-07 00:00:00
Debian: Security Advisory (DSA-3996-1)
2017-10-09 00:00:00
openSUSE: Security Advisory for ffmpeg (openSUSE-SU-2017:2502-1)
2017-09-16 00:00:00
freebsd
freebsd
FFmpeg -- multiple vulnerabilities
2017-09-11 00:00:00
debian
debian
[SECURITY] [DSA 3996-1] ffmpeg security update
2017-10-10 19:23:08
[SECURITY] [DLA 1630-1] libav security update
2019-01-07 22:34:48
suse
suse
Security update for ffmpeg, ffmpeg2 (important)
2017-09-16 00:12:39
mageia
mageia
Updated ffmpeg packages fix security vulnerability
2018-01-01 13:38:51