The dv_extract_audio function in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted DV file.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
21 Nov 2024, 01:31
Type | Values Removed | Values Added |
---|---|---|
References | () http://ffmpeg.org/ - | |
References | () http://git.libav.org/?p=libav.git%3Ba=commit%3Bh=635bcfccd439480003b74a665b5aa7c872c1ad6b - | |
References | () http://git.libav.org/?p=libav.git%3Ba=commitdiff%3Bh=2d1c0dea5f6b91bec7f5fa53ec050913d851e366 - | |
References | () http://libav.org/ - | |
References | () http://secunia.com/advisories/49089 - | |
References | () http://www.debian.org/security/2012/dsa-2471 - | |
References | () http://www.ubuntu.com/usn/USN-1479-1 - |
07 Nov 2023, 02:09
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
References | () http://ffmpeg.org/ - | |
References | () http://libav.org/ - | |
References | () http://www.debian.org/security/2012/dsa-2471 - | |
References | () http://www.ubuntu.com/usn/USN-1479-1 - | |
References | () http://secunia.com/advisories/49089 - |
Information
Published : 2012-08-20 18:55
Updated : 2024-11-21 01:31
NVD link : CVE-2011-3936
Mitre link : CVE-2011-3936
CVE.ORG link : CVE-2011-3936
JSON object : View
Products Affected
ffmpeg
- ffmpeg
libav
- libav
CWE
CWE-20
Improper Input Validation