VDB-9841 · OSVDB 95370

FFmpeg up to 1.2 libavcodec/indeo3.c copy_cell/decode_cell Local Privilege Escalation

EntryeditHistoryDiffjsonxmlCTI

A vulnerability has been found in FFmpeg up to 1.2 (Multimedia Processing Software) and classified as problematic. Affected by this vulnerability is the function copy_cell/decode_cell of the file libavcodec/indeo3.c. Upgrading to version 9.6 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at git.videolan.org. The best possible mitigation is suggested to be patching the affected component. A possible mitigation has been published immediately after the disclosure of the vulnerability.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
79453605/08/2018VulD...typeMultimedia Processing Software05/08/2018accepted100
79458008/06/2013VulD...cvss3_vuldb_aL08/06/2013accepted60
79457908/06/2013VulD...cvss3_vuldb_iL08/06/2013accepted60
79457808/06/2013VulD...cvss3_vuldb_cL08/06/2013accepted60
79457708/06/2013VulD...cvss3_vuldb_sU08/06/2013accepted60
79457608/06/2013VulD...cvss3_vuldb_uiN08/06/2013accepted60
79457508/06/2013VulD...cvss3_vuldb_prL08/06/2013accepted60
79457408/06/2013VulD...cvss3_vuldb_acL08/06/2013accepted60
79457308/06/2013VulD...cvss3_vuldb_avL08/06/2013accepted60
79457208/06/2013VulD...cvss2_vuldb_aiP08/06/2013accepted60
79457108/06/2013VulD...cvss2_vuldb_iiP08/06/2013accepted60
79457008/06/2013VulD...cvss2_vuldb_ciP08/06/2013accepted60
79456908/06/2013VulD...cvss2_vuldb_auS08/06/2013accepted60
79456808/06/2013VulD...cvss2_vuldb_acM08/06/2013accepted60
79456708/06/2013VulD...cvss2_vuldb_avL08/06/2013accepted60
79456608/06/2013VulD...cvss3_vuldb_rcC08/06/2013accepted90
79456508/06/2013VulD...cvss3_vuldb_rlO08/06/2013accepted90
79456408/06/2013VulD...cvss3_vuldb_eX08/06/2013accepted90
79456308/06/2013VulD...cvss2_vuldb_rcC08/06/2013accepted90
79456208/06/2013VulD...cvss2_vuldb_rlOF08/06/2013accepted90

Do you want to use VulDB in your project?

Use the official API to access entries easily!