← voltar
CVE-2015-3395

CVE-2015-3395

EPSS 2.4%
The msrle_decode_pal4 function in msrledec.c in Libav before 10.7 and 11.x before 11.4 and FFmpeg before 2.0.7, 2.2.x before 2.2.15, 2.4.x before 2.4.8, 2.5.x before 2.5.6, and 2.6.x before 2.6.2 allows remote attackers to have unspecified impact via a crafted image, related to a pixel pointer, which triggers an out-of-bounds array access.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=f7e1367f58263593e6cee3c282f7277d7ee9d553https://git.libav.org/?p=libav.git%3Ba=blob%3Bf=Changelog%3Bhb=refs/tags/v11.4https://security.gentoo.org/glsa/201603-06https://security.gentoo.org/glsa/201705-08https://www.ffmpeg.org/security.htmlhttp://www.debian.org/security/2015/dsa-3288http://www.securityfocus.com/bid/74433http://www.ubuntu.com/usn/USN-2944-1