Lucene search
Veracode Vulnerability DatabaseVERACODE:26259HistoryAug 06, 2020 - 9:39 p.m.
Denial Of Service (DoS)
2020-08-0621:39:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.043 Low
EPSS
Percentile
92.3%
ffmpeg is vulnerable to Denial Of Service (DoS). The aa_read_header in libavformat/aadec.c in FFmpeg before 3.2.14 and 4.x before 4.1.4 does not check for sscanf failure and consequently allows use of uninitialized variables.
References
www.securityfocus.com/bid/109317
git.ffmpeg.org/gitweb/ffmpeg.git/commit/9b4004c054964a49c7ba44583f4cee22486dd8f2
git.ffmpeg.org/gitweb/ffmpeg.git/shortlog/n4.1.4
github.com/FFmpeg/FFmpeg/commit/ed188f6dcdf0935c939ed813cf8745d50742014b
github.com/FFmpeg/FFmpeg/compare/a97ea53...ba11e40
seclists.org/bugtraq/2019/Aug/30
security.gentoo.org/glsa/202003-65
usn.ubuntu.com/4431-1/
www.debian.org/security/2019/dsa-4502
Related
nvd
nvd
CVE-2019-12730
2019-06-04 14:29:01
debiancve
debiancve
CVE-2019-12730
2019-06-04 14:29:01
cve
cve
CVE-2019-12730
2019-06-04 14:29:01
prion
prion
Design/Logic Flaw
2019-06-04 14:29:00
openvas
openvas
FFmpeg < 3.2.14 Use Of Uninitialized Variables
2019-06-19 00:00:00
Debian: Security Advisory (DSA-4502-1)
2019-08-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:3184-1)
2021-06-09 00:00:00
osv
osv
ffmpeg - security update
2019-08-16 00:00:00
CVE-2019-12730
2019-06-04 14:29:01
ffmpeg - security update
2019-05-22 00:00:00
debian
debian
[SECURITY] [DSA 4502-1] ffmpeg security update
2019-08-16 20:38:40
alpinelinux
alpinelinux
CVE-2019-12730
2019-06-04 14:29:01
ubuntucve
ubuntucve
CVE-2019-12730
2019-06-04 00:00:00
nessus
nessus
Debian DSA-4502-1 : ffmpeg - security update
2019-08-20 00:00:00
SUSE SLED15 / SLES15 Security Update : ffmpeg (SUSE-SU-2019:3184-2)
2020-07-09 00:00:00
SUSE SLED15 / SLES15 Security Update : ffmpeg (SUSE-SU-2019:3184-1)
2019-12-06 00:00:00
cvelist
cvelist
CVE-2019-12730
2019-06-04 13:14:23
cloudfoundry
cloudfoundry
USN-4431-1: FFmpeg vulnerabilities | Cloud Foundry
2020-08-27 00:00:00
ubuntu
ubuntu
FFmpeg vulnerabilities
2020-07-22 00:00:00
gentoo
gentoo
FFmpeg: Multiple vulnerabilities
2020-03-30 00:00:00