Lucene search
HistorySep 06, 2015 - 2:59 a.m.
CVE-2015-6823
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
High
EPSS
0.004
Percentile
72.1%
The allocate_buffers function in libavcodec/alac.c in FFmpeg before 2.7.2 does not initialize certain context data, which allows remote attackers to cause a denial of service (segmentation violation) or possibly have unspecified other impact via crafted Apple Lossless Audio Codec (ALAC) data.
Affected configurations
Node
ffmpegffmpegRange≤2.7.1
Related
cvelist
cvelist
CVE-2015-6823
2015-09-06 01:00:00
ubuntucve
ubuntucve
CVE-2015-6823
2015-09-06 00:00:00
debiancve
debiancve
CVE-2015-6823
2015-09-06 02:59:06
veracode
veracode
Denial Of Service (DoS)
2017-02-08 02:57:06
prion
prion
Design/Logic Flaw
2015-09-06 02:59:00
cve
cve
CVE-2015-6823
2015-09-06 02:59:06
osv
osv
libav - security update
2018-12-20 00:00:00
nessus
nessus
Debian DLA-1611-2 : libav security update
2018-12-21 00:00:00
debian
debian
[SECURITY] [DLA 1611-2] libav security update
2018-12-21 06:19:12
[SECURITY] [DLA 1611-1] libav security update
2018-12-20 21:51:33
freebsd
freebsd
ffmpeg -- multiple vulnerabilities
2015-09-05 00:00:00
mageia
mageia
Updated ffmpeg packages fix security vulnerabilities
2016-01-15 04:52:38
openvas
openvas
Mageia: Security Advisory (MGASA-2016-0018)
2016-01-15 00:00:00
Debian: Security Advisory (DLA-1611)
2023-03-08 00:00:00
Debian: Security Advisory (DLA-1611-2)
2018-12-20 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
High
EPSS
0.004
Percentile
72.1%
Related for NVD:CVE-2015-6823