Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-3395HistoryJun 16, 2015 - 4:59 p.m.
CVE-2015-3395
2015-06-1616:59:04
Debian Security Bug Tracker
security-tracker.debian.org
22
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.008
Percentile
82.2%
The msrle_decode_pal4 function in msrledec.c in Libav before 10.7 and 11.x before 11.4 and FFmpeg before 2.0.7, 2.2.x before 2.2.15, 2.4.x before 2.4.8, 2.5.x before 2.5.6, and 2.6.x before 2.6.2 allows remote attackers to have unspecified impact via a crafted image, related to a pixel pointer, which triggers an out-of-bounds array access.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | ffmpeg | < 7:2.6.2-1 | ffmpeg_7:2.6.2-1_all.deb |
| Debian | 11 | all | ffmpeg | < 7:2.6.2-1 | ffmpeg_7:2.6.2-1_all.deb |
| Debian | 999 | all | ffmpeg | < 7:2.6.2-1 | ffmpeg_7:2.6.2-1_all.deb |
| Debian | 13 | all | ffmpeg | < 7:2.6.2-1 | ffmpeg_7:2.6.2-1_all.deb |
Related
veracode
veracode
Denial Of Service (DoS)
2017-02-09 05:17:22
cvelist
cvelist
CVE-2015-3395
2015-06-16 16:00:00
cve
cve
CVE-2015-3395
2015-06-16 16:59:04
freebsd
freebsd
ffmpeg -- out-of-bounds array access
2015-04-12 00:00:00
prion
prion
Out-of-bounds
2015-06-16 16:59:00
nessus
nessus
FreeBSD : ffmpeg -- out-of-bounds array access (80c66af0-d1c5-449e-bd31-63b12525ff88)
2015-09-02 00:00:00
Debian DSA-3288-1 : libav - security update
2015-06-15 00:00:00
GLSA-201705-08 : libav: Multiple vulnerabilities
2017-05-10 00:00:00
nvd
nvd
CVE-2015-3395
2015-06-16 16:59:04
ubuntucve
ubuntucve
CVE-2015-3395
2015-06-16 00:00:00
securityvulns
securityvulns
libav / ffmpeg security vulnerabilities
2015-06-21 00:00:00
[SECURITY] [DSA 3288-1] libav security update
2015-06-21 00:00:00
osv
osv
libav - security update
2015-06-13 00:00:00
libav-tools-12.3-1.17 on GA media
2024-06-15 00:00:00
openvas
openvas
Debian Security Advisory DSA 3288-1 (libav - security update)
2015-06-13 00:00:00
Debian: Security Advisory (DSA-3288-1)
2015-06-12 00:00:00
Mageia: Security Advisory (MGASA-2015-0245)
2022-01-28 00:00:00
debian
debian
[SECURITY] [DSA 3288-1] libav security update
2015-06-13 17:16:32
gentoo
gentoo
libav: Multiple vulnerabilities
2017-05-09 00:00:00
FFmpeg: Multiple vulnerabilities
2016-03-12 00:00:00
mageia
mageia
Updated ffmpeg package fixes security vulnerability
2015-06-19 16:33:05
ubuntu
ubuntu
Libav vulnerabilities
2016-04-04 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.008
Percentile
82.2%
Related for DEBIANCVE:CVE-2015-3395