CVE-2011-3937

2013-01-0500:55:02

Debian Security Bug Tracker

security-tracker.debian.org

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

60.7%

JSON

The H.263 codec (libavcodec/h263dec.c) in FFmpeg 0.7.x before 0.7.12, 0.8.x before 0.8.11, and unspecified versions before 0.10, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 has unspecified impact and attack vectors related to “width/height changing with frame threads.”

OSVersionArchitecturePackageVersionFilename
Debian12allffmpeg< 7:5.1.5-0+deb12u1ffmpeg_7:5.1.5-0+deb12u1_all.deb
Debian11allffmpeg< 7:4.3.6-0+deb11u1ffmpeg_7:4.3.6-0+deb11u1_all.deb
Debian999allffmpeg< 7:6.1.1-4ffmpeg_7:6.1.1-4_all.deb
Debian13allffmpeg< 7:6.1.1-4ffmpeg_7:6.1.1-4_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	ffmpeg	< 7:5.1.5-0+deb12u1	ffmpeg_7:5.1.5-0+deb12u1_all.deb
Debian	11	all	ffmpeg	< 7:4.3.6-0+deb11u1	ffmpeg_7:4.3.6-0+deb11u1_all.deb
Debian	999	all	ffmpeg	< 7:6.1.1-4	ffmpeg_7:6.1.1-4_all.deb
Debian	13	all	ffmpeg	< 7:6.1.1-4	ffmpeg_7:6.1.1-4_all.deb