Vulnerability Details CVE-2011-3936
The dv_extract_audio function in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted DV file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.3%
CVSS Severity
CVSS v2 Score 4.3
References
- http://ffmpeg.org/
- http://git.libav.org/?p=libav.git%3Ba=commit%3Bh=635bcfccd439480003b74a665b5aa7c872c1ad6b
- http://git.libav.org/?p=libav.git%3Ba=commitdiff%3Bh=2d1c0dea5f6b91bec7f5fa53ec050913d851e366
- http://libav.org/
- http://secunia.com/advisories/49089
- http://www.debian.org/security/2012/dsa-2471
- http://www.ubuntu.com/usn/USN-1479-1
- http://ffmpeg.org/
- http://git.libav.org/?p=libav.git%3Ba=commit%3Bh=635bcfccd439480003b74a665b5aa7c872c1ad6b
- http://git.libav.org/?p=libav.git%3Ba=commitdiff%3Bh=2d1c0dea5f6b91bec7f5fa53ec050913d851e366
- http://libav.org/
- http://secunia.com/advisories/49089
- http://www.debian.org/security/2012/dsa-2471
- http://www.ubuntu.com/usn/USN-1479-1
Products affected by CVE-2011-3936
-
cpe:2.3:a:ffmpeg:ffmpeg:0.7
-
cpe:2.3:a:ffmpeg:ffmpeg:0.7.1
-
cpe:2.3:a:ffmpeg:ffmpeg:0.7.11
-
cpe:2.3:a:ffmpeg:ffmpeg:0.7.12
-
cpe:2.3:a:ffmpeg:ffmpeg:0.7.2
-
cpe:2.3:a:ffmpeg:ffmpeg:0.7.3
-
cpe:2.3:a:ffmpeg:ffmpeg:0.7.6
-
cpe:2.3:a:ffmpeg:ffmpeg:0.7.7
-
cpe:2.3:a:ffmpeg:ffmpeg:0.7.8
-
cpe:2.3:a:ffmpeg:ffmpeg:0.7.9
-
cpe:2.3:a:ffmpeg:ffmpeg:0.8.0
-
cpe:2.3:a:ffmpeg:ffmpeg:0.8.1
-
cpe:2.3:a:ffmpeg:ffmpeg:0.8.10
-
cpe:2.3:a:ffmpeg:ffmpeg:0.8.2
-
cpe:2.3:a:ffmpeg:ffmpeg:0.8.5
-
cpe:2.3:a:ffmpeg:ffmpeg:0.8.6
-
cpe:2.3:a:ffmpeg:ffmpeg:0.8.7
-
cpe:2.3:a:ffmpeg:ffmpeg:0.8.8
-
cpe:2.3:a:libav:libav:0.5
-
cpe:2.3:a:libav:libav:0.5.1
-
cpe:2.3:a:libav:libav:0.5.2
-
cpe:2.3:a:libav:libav:0.5.3
-
cpe:2.3:a:libav:libav:0.5.4
-
cpe:2.3:a:libav:libav:0.5.5
-
cpe:2.3:a:libav:libav:0.5.6
-
cpe:2.3:a:libav:libav:0.5.7
-
cpe:2.3:a:libav:libav:0.6
-
cpe:2.3:a:libav:libav:0.6.1
-
cpe:2.3:a:libav:libav:0.6.2
-
cpe:2.3:a:libav:libav:0.6.3
-
cpe:2.3:a:libav:libav:0.6.4
-
cpe:2.3:a:libav:libav:0.6.5
-
cpe:2.3:a:libav:libav:0.7
-
cpe:2.3:a:libav:libav:0.7.1
-
cpe:2.3:a:libav:libav:0.7.2
-
cpe:2.3:a:libav:libav:0.7.3
-
cpe:2.3:a:libav:libav:0.7.4
-
cpe:2.3:a:libav:libav:0.8