Lucene search

UbuntuUSN-4859-1

HistoryMar 15, 2021 - 12:00 a.m.

MediaInfoLib vulnerabilities

2021-03-1500:00:00

ubuntu.com

mediainfolib

ubuntu esm

libmediainfo

security issues

multimedia files

denial of service

unix

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.8

Confidence

High

EPSS

0.005

Percentile

75.7%

JSON

Releases

Ubuntu 16.04 ESM
Ubuntu 14.04 ESM

Packages

libmediainfo - library reading metadata from media files

Details

It was discovered that MediaInfoLib contained multiple security issues when
handling certain multimedia files. If a user were tricked into opening a
crafted multimedia file, an attacker could cause MediaInfoLib to crash,
resulting in a denial of service.

OSVersionArchitecturePackageVersionFilename
Ubuntu16.04noarchpython-mediainfodll< 0.7.82-1ubuntu0.1~esm1UNKNOWN
Ubuntu16.04noarchlibmediainfo-dev< 0.7.82-1UNKNOWN
Ubuntu16.04noarchlibmediainfo-doc< 0.7.82-1UNKNOWN
Ubuntu16.04noarchlibmediainfo0v5< 0.7.82-1UNKNOWN
Ubuntu16.04noarchlibmediainfo0v5-dbgsym< 0.7.82-1UNKNOWN
Ubuntu16.04noarchpython-mediainfodll< 0.7.82-1UNKNOWN
Ubuntu16.04noarchpython3-mediainfodll< 0.7.82-1UNKNOWN
Ubuntu16.04noarchpython3-mediainfodll< 0.7.82-1ubuntu0.1~esm1UNKNOWN
Ubuntu16.04noarchlibmediainfo0v5< 0.7.82-1ubuntu0.1~esm1UNKNOWN
Ubuntu14.04noarchpython-mediainfodll< 0.7.67-2ubuntu1+esm1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	16.04	noarch	python-mediainfodll	< 0.7.82-1ubuntu0.1~esm1	UNKNOWN
Ubuntu	16.04	noarch	libmediainfo-dev	< 0.7.82-1	UNKNOWN
Ubuntu	16.04	noarch	libmediainfo-doc	< 0.7.82-1	UNKNOWN
Ubuntu	16.04	noarch	libmediainfo0v5	< 0.7.82-1	UNKNOWN
Ubuntu	16.04	noarch	libmediainfo0v5-dbgsym	< 0.7.82-1	UNKNOWN
Ubuntu	16.04	noarch	python-mediainfodll	< 0.7.82-1	UNKNOWN
Ubuntu	16.04	noarch	python3-mediainfodll	< 0.7.82-1	UNKNOWN
Ubuntu	16.04	noarch	python3-mediainfodll	< 0.7.82-1ubuntu0.1~esm1	UNKNOWN
Ubuntu	16.04	noarch	libmediainfo0v5	< 0.7.82-1ubuntu0.1~esm1	UNKNOWN
Ubuntu	14.04	noarch	python-mediainfodll	< 0.7.67-2ubuntu1+esm1	UNKNOWN