Lucene search
HistoryNov 23, 2013 - 6:55 p.m.
CVE-2013-0868
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
6.3 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
71.9%
libavcodec/huffyuvdec.c in FFmpeg before 1.1.2 allows remote attackers to have an unspecified impact via crafted Huffyuv data, related to an out-of-bounds write and (1) unchecked return codes from the init_vlc function and (2) “len==0 cases.”
Affected configurations
Node
ffmpegffmpegRange≤1.1.1
ORffmpegffmpegMatch0.3
ORffmpegffmpegMatch0.3.1
ORffmpegffmpegMatch0.3.2
ORffmpegffmpegMatch0.3.3
ORffmpegffmpegMatch0.3.4
ORffmpegffmpegMatch0.4.0
ORffmpegffmpegMatch0.4.2
ORffmpegffmpegMatch0.4.3
ORffmpegffmpegMatch0.4.4
ORffmpegffmpegMatch0.4.5
ORffmpegffmpegMatch0.4.6
ORffmpegffmpegMatch0.4.7
ORffmpegffmpegMatch0.4.8
ORffmpegffmpegMatch0.4.9pre1
ORffmpegffmpegMatch0.5
ORffmpegffmpegMatch0.5.1
ORffmpegffmpegMatch0.5.2
ORffmpegffmpegMatch0.5.3
ORffmpegffmpegMatch0.5.4
ORffmpegffmpegMatch0.5.4.5
ORffmpegffmpegMatch0.5.4.6
ORffmpegffmpegMatch0.6
ORffmpegffmpegMatch0.6.1
ORffmpegffmpegMatch0.6.2
ORffmpegffmpegMatch0.6.3
ORffmpegffmpegMatch0.7
ORffmpegffmpegMatch0.7.1
ORffmpegffmpegMatch0.7.2
ORffmpegffmpegMatch0.7.3
ORffmpegffmpegMatch0.7.4
ORffmpegffmpegMatch0.7.5
ORffmpegffmpegMatch0.7.6
ORffmpegffmpegMatch0.7.7
ORffmpegffmpegMatch0.7.8
ORffmpegffmpegMatch0.7.9
ORffmpegffmpegMatch0.7.11
ORffmpegffmpegMatch0.7.12
ORffmpegffmpegMatch0.8.0
ORffmpegffmpegMatch0.8.1
ORffmpegffmpegMatch0.8.2
ORffmpegffmpegMatch0.8.5
ORffmpegffmpegMatch0.8.5.3
ORffmpegffmpegMatch0.8.5.4
ORffmpegffmpegMatch0.8.6
ORffmpegffmpegMatch0.8.7
ORffmpegffmpegMatch0.8.8
ORffmpegffmpegMatch0.8.10
ORffmpegffmpegMatch0.8.11
ORffmpegffmpegMatch0.9
ORffmpegffmpegMatch0.9.1
ORffmpegffmpegMatch0.10
ORffmpegffmpegMatch0.10.3
ORffmpegffmpegMatch0.10.4
ORffmpegffmpegMatch0.11
ORffmpegffmpegMatch1.0
Related
cve
cve
CVE-2013-0868
2013-11-23 18:55:04
CVE-2021-38114
2021-08-04 21:15:08
prion
prion
Design/Logic Flaw
2013-11-23 18:55:00
Design/Logic Flaw
2021-08-04 21:15:00
cvelist
cvelist
CVE-2013-0868
2013-11-23 18:00:00
CVE-2021-38114
2021-08-04 20:15:32
ubuntucve
ubuntucve
CVE-2013-0868
2013-11-23 00:00:00
CVE-2021-38114
2021-08-04 00:00:00
debiancve
debiancve
CVE-2013-0868
2013-11-23 18:55:04
CVE-2021-38114
2021-08-04 21:15:08
osv
osv
CVE-2021-38114
2021-08-04 21:15:08
libav - security update
2014-08-10 00:00:00
alpinelinux
alpinelinux
CVE-2021-38114
2021-08-04 21:15:08
nvd
nvd
CVE-2021-38114
2021-08-04 21:15:08
nessus
nessus
SUSE SLED15 / SLES15 Security Update : ffmpeg (SUSE-SU-2021:2919-1)
2021-09-04 00:00:00
openSUSE 15 Security Update : ffmpeg (openSUSE-SU-2021:2919-1)
2021-09-04 00:00:00
GLSA-201502-08 : Libav: Multiple vulnerabilities
2015-02-09 00:00:00
debian
debian
[SECURITY] [DSA 3003-1] libav security update
2014-08-10 21:28:40
gentoo
gentoo
Libav: Multiple vulnerabilities
2015-02-07 00:00:00
FFmpeg: Multiple vulnerabilities
2016-03-12 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201502-08
2015-09-29 00:00:00
Debian: Security Advisory (DSA-3003-1)
2014-08-09 00:00:00
Debian Security Advisory DSA 3003-1 (libav - security update)
2014-08-10 00:00:00
mageia
mageia
Updated ffmpeg packages fix security vulnerability
2021-10-29 22:32:22
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
6.3 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
71.9%
Related for NVD:CVE-2013-0868