CVE-2015-5479 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	6.5 MEDIUM	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 78%

Vendor	Product	Version
ubuntu	ubuntu	12.04
libav	libav	𝑥 ≤ 11.4
opensuse	leap	42.1

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

ffmpeg

bullseye	7:4.3.7-0+deb11u1 fixed
wheezy	no-dsa
bullseye (security)	7:4.3.8-0+deb11u1 fixed
bookworm	7:5.1.6-0+deb12u1 fixed
bookworm (security)	7:5.1.6-0+deb12u1 fixed
sid	7:7.1-3 fixed
trixie	7:7.1-3 fixed

Ubuntu Releases

Ubuntu Product

Codename

ffmpeg

disco	not-affected
cosmic	not-affected
bionic	not-affected
artful	not-affected
zesty	not-affected
yakkety	not-affected
xenial	not-affected
wily	not-affected
vivid	not-affected
trusty	dne
precise	dne

libav

disco	dne
cosmic	dne
bionic	dne
artful	dne
zesty	dne
yakkety	dne
xenial	dne
wily	dne
vivid	ignored
trusty	Fixed 6:9.20-0ubuntu0.14.04.1+esm1 released
precise	Fixed 4:0.8.17-0ubuntu0.12.04.2 released

Common Weakness Enumeration

CWE-189 -

References

http://lists.opensuse.org/opensuse-updates/2016-06/msg00105.html

http://www.securityfocus.com/bid/75932

http://www.ubuntu.com/usn/USN-2944-1

https://blogs.gentoo.org/ago/2015/07/16/libav-divide-by-zero-in-ff_h263_decode_mba/

https://git.libav.org/?p=libav.git%3Ba=commitdiff%3Bh=0a49a62f998747cfa564d98d36a459fe70d3299b

https://libav.org/releases/libav-11.5.changelog

http://lists.opensuse.org/opensuse-updates/2016-06/msg00105.html

http://www.securityfocus.com/bid/75932

http://www.ubuntu.com/usn/USN-2944-1

https://blogs.gentoo.org/ago/2015/07/16/libav-divide-by-zero-in-ff_h263_decode_mba/

https://git.libav.org/?p=libav.git%3Ba=commitdiff%3Bh=0a49a62f998747cfa564d98d36a459fe70d3299b

https://libav.org/releases/libav-11.5.changelog