Lucene search
Veracode Vulnerability DatabaseVERACODE:3526HistoryFeb 09, 2017 - 2:28 a.m.
Denial Of Service (DoS)
2017-02-0902:28:46
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
10
0.017 Low
EPSS
Percentile
87.8%
FFmpeg is vulnerable to denial of service (DoS) attacks or possibly other attacks. A malicious user can pass a malicious mp4 file to the system to cause a use-after-free memory error in the system and cause it to crash.
References
seclists.org/fulldisclosure/2015/Apr/31
www.debian.org/security/2015/dsa-3288
www.securityfocus.com/bid/74385
www.securitytracker.com/id/1032198
git.libav.org/?p=libav.git;a=blob;f=Changelog;hb=refs/tags/v11.4
github.com/FFmpeg/FFmpeg/commit/e8714f6f93d1a32f4e4655209960afcf4c185214
security.gentoo.org/glsa/201705-08
Related
cve
cve
CVE-2015-3417
2015-04-24 17:59:03
cvelist
cvelist
CVE-2015-3417
2015-04-24 17:00:00
ubuntucve
ubuntucve
CVE-2015-3417
2015-04-24 00:00:00
debiancve
debiancve
CVE-2015-3417
2015-04-24 17:59:03
prion
prion
Design/Logic Flaw
2015-04-24 17:59:00
nvd
nvd
CVE-2015-3417
2015-04-24 17:59:03
freebsd
freebsd
ffmpeg -- use-after-free
2014-12-19 00:00:00
avidemux26 -- multiple vulnerabilities in bundled FFmpeg
2015-05-18 00:00:00
nessus
nessus
FreeBSD : ffmpeg -- use-after-free (da434a78-e342-4d9a-87e2-7497e5f117ba)
2015-09-02 00:00:00
Debian DSA-3288-1 : libav - security update
2015-06-15 00:00:00
openvas
openvas
Debian Security Advisory DSA 3288-1 (libav - security update)
2015-06-13 00:00:00
Debian: Security Advisory (DSA-3288-1)
2015-06-12 00:00:00
Mageia: Security Advisory (MGASA-2015-0233)
2022-01-28 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3288-1] libav security update
2015-06-21 00:00:00
libav / ffmpeg security vulnerabilities
2015-06-21 00:00:00
osv
osv
libav - security update
2015-06-13 00:00:00
debian
debian
[SECURITY] [DSA 3288-1] libav security update
2015-06-13 17:16:32
mageia
mageia
Updated avidemux packages fix security vulnerabilities
2015-05-18 22:08:05
Updated ffmpeg package fixes security vulnerability
2015-06-19 16:33:05
gentoo
gentoo
libav: Multiple vulnerabilities
2017-05-09 00:00:00