Lucene search

RedhatCVE-2012-0847

HistoryAug 20, 2012 - 7:55 p.m.

CVE-2012-0847

2012-08-2019:55:03

CWE-119

redhat

web.nvd.nist.gov

cve-2012-0847

buffer overflow

avfilter

ffmpeg

denial of service

nvd

security vulnerability

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

7.1

Confidence

High

EPSS

0.007

Percentile

80.1%

JSON

Heap-based buffer overflow in the avfilter_filter_samples function in libavfilter/avfilter.c in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service (application crash) via a crafted media file.

Affected configurations

Nvd

Node

ffmpegffmpegRange≤0.9

ffmpegffmpegMatch0.7.1

ffmpegffmpegMatch0.7.2

ffmpegffmpegMatch0.7.7

ffmpegffmpegMatch0.7.8

ffmpegffmpegMatch0.7.9

ffmpegffmpegMatch0.7.11

ffmpegffmpegMatch0.7.12

ffmpegffmpegMatch0.8.5

ffmpegffmpegMatch0.8.6

ffmpegffmpegMatch0.8.7

ffmpegffmpegMatch0.8.8

ffmpegffmpegMatch0.8.10

ffmpegffmpegMatch0.8.11

VendorProductVersionCPE
ffmpegffmpeg*cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:*
ffmpegffmpeg0.7.1cpe:2.3:a:ffmpeg:ffmpeg:0.7.1:*:*:*:*:*:*:*
ffmpegffmpeg0.7.2cpe:2.3:a:ffmpeg:ffmpeg:0.7.2:*:*:*:*:*:*:*
ffmpegffmpeg0.7.7cpe:2.3:a:ffmpeg:ffmpeg:0.7.7:*:*:*:*:*:*:*
ffmpegffmpeg0.7.8cpe:2.3:a:ffmpeg:ffmpeg:0.7.8:*:*:*:*:*:*:*
ffmpegffmpeg0.7.9cpe:2.3:a:ffmpeg:ffmpeg:0.7.9:*:*:*:*:*:*:*
ffmpegffmpeg0.7.11cpe:2.3:a:ffmpeg:ffmpeg:0.7.11:*:*:*:*:*:*:*
ffmpegffmpeg0.7.12cpe:2.3:a:ffmpeg:ffmpeg:0.7.12:*:*:*:*:*:*:*
ffmpegffmpeg0.8.5cpe:2.3:a:ffmpeg:ffmpeg:0.8.5:*:*:*:*:*:*:*
ffmpegffmpeg0.8.6cpe:2.3:a:ffmpeg:ffmpeg:0.8.6:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ffmpeg	ffmpeg	*	cpe:2.3:a:ffmpeg:ffmpeg::::::::
ffmpeg	ffmpeg	0.7.1	cpe:2.3:a:ffmpeg:ffmpeg:0.7.1:::::::*
ffmpeg	ffmpeg	0.7.2	cpe:2.3:a:ffmpeg:ffmpeg:0.7.2:::::::*
ffmpeg	ffmpeg	0.7.7	cpe:2.3:a:ffmpeg:ffmpeg:0.7.7:::::::*
ffmpeg	ffmpeg	0.7.8	cpe:2.3:a:ffmpeg:ffmpeg:0.7.8:::::::*
ffmpeg	ffmpeg	0.7.9	cpe:2.3:a:ffmpeg:ffmpeg:0.7.9:::::::*
ffmpeg	ffmpeg	0.7.11	cpe:2.3:a:ffmpeg:ffmpeg:0.7.11:::::::*
ffmpeg	ffmpeg	0.7.12	cpe:2.3:a:ffmpeg:ffmpeg:0.7.12:::::::*
ffmpeg	ffmpeg	0.8.5	cpe:2.3:a:ffmpeg:ffmpeg:0.8.5:::::::*
ffmpeg	ffmpeg	0.8.6	cpe:2.3:a:ffmpeg:ffmpeg:0.8.6:::::::*

Rows per page:

1-10 of 141

References

ffmpeg.org/security.html

git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=ae21776207e8a2bbe268e7c9e203f7599dd87ddb

www.openwall.com/lists/oss-security/2012/02/01/11

www.openwall.com/lists/oss-security/2012/02/14/4

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

AI Score

7.1

Confidence

High

EPSS

0.007

Percentile

80.1%

JSON

Related for CVE-2012-0847