Note:
This project will be discontinued after December 13, 2021. [more]
2018-05-15
An issue was discovered in Libav 12.3. A read access violation in the mov_probe function in libavformat/mov.c allows remote attackers to cause a denial of service (application crash), as demonstrated by avconv.
Products | Libav |
Type | Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) |
First patch | - None (likely due to unavailable code) |
Links |
• https://docs.google.com/document/d/18xCwfxMSJiQ9ruQSVaO8-jlcobDjFiYXWOaw31V37xo/edit
• https://bugzilla.libav.org/show_bug.cgi?id=1128 • https://lists.debian.org/debian-lts-announce/2019/09/msg00000.html |