CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
Percentile
70.1%
The avcodec_decode_audio4 function in libavcodec/utils.c in FFmpeg before
1.0.4 and 1.1.x before 1.1.1 allows remote attackers to trigger memory
corruption via vectors related to the channel layout.
Author | Note |
---|---|
mdeslaur | libav and ffmpeg codebases have diverged to the point of not being able to track both using the same CVE numbers. Marking this CVE as not-affected for libav. |