Информационная безопасность
[RU] switch to English


Многочисленные уязвимости безопасности в библиотеке ffmpeg
дополнено с 11 ноября 2011 г.
Опубликовано:27 ноября 2011 г.
Источник:
SecurityVulns ID:12031
Тип:удаленная
Уровень опасности:
7/10
Описание:Повреждения памяти при разборе форматов MKV и AVS/CAVS
Затронутые продукты:FFMPEG : FFmpeg 0.7
 FFMPEG : FFmpeg 0.8
CVE:CVE-2011-3974 (Integer signedness error in the decode_residual_inter function in cavsdec.c in libavcodec in FFmpeg before 0.7.4 and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (incorrect write operation and application crash) via an invalid bitstream in a Chinese AVS video (aka CAVS) file, a different vulnerability than CVE-2011-3362.)
 CVE-2011-3973 (cavsdec.c in libavcodec in FFmpeg before 0.7.4 and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (incorrect write operation and application crash) via an invalid bitstream in a Chinese AVS video (aka CAVS) file, related to the decode_residual_block, check_for_slice, and cavs_decode_frame functions, a different vulnerability than CVE-2011-3362.)
 CVE-2011-3504 (The Matroska format decoder in FFmpeg before 0.8.3 does not properly allocate memory, which allows remote attackers to execute arbitrary code via a crafted file.)
 CVE-2011-3362 (Integer signedness error in the decode_residual_block function in cavsdec.c in libavcodec in FFmpeg before 0.7.3 and 0.8.x before 0.8.2, and libav through 0.7.1, allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Chinese AVS video (aka CAVS) file.)
Оригинальный текстdocumentResearch@NGSSecure, NGS00148 Patch Notification: FFmpeg Libavcodec memory corruption remote code execution (27.11.2011)
 documentResearch@NGSSecure, NGS00145 Patch Notification: FFmpeg Libavcodec out of bounds write remote code execution (27.11.2011)
 documentResearch@NGSSecure, NGS00144 Patch Notification: FFmpeg Libavcodec buffer overflow remote code execution (27.11.2011)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород