CVE-2015-6820 in FFmpegالمعلومات

الملخص

بحسب MITRE

The ff_sbr_apply function in libavcodec/aacsbr.c in FFmpeg before 2.7.2 does not check for a matching AAC frame syntax element before proceeding with Spectral Band Replication calculations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted AAC data.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

حجز

05/09/2015

إفشاء

05/09/2015

الاعتدال

تمت الموافقة

إدخال

VDB-77585

EPSS

0.02412

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you want to use VulDB in your project?

Use the official API to access entries easily!