CVE-2015-6820 in FFmpegthông tin

Tóm tắt

Bởi MITRE

The ff_sbr_apply function in libavcodec/aacsbr.c in FFmpeg before 2.7.2 does not check for a matching AAC frame syntax element before proceeding with Spectral Band Replication calculations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted AAC data.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Đặt trước

05/09/2015

Tiết lộ

05/09/2015

Kiểm duyệt

được chấp nhận

mục

VDB-77585

EPSS

0.02412

KEV

không

Các hoạt động

rất thấp

Nguồn

Do you want to use VulDB in your project?

Use the official API to access entries easily!