CVE-2015-5479 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.5 MEDIUM	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 79%

Affected Products (NVD)

Vendor	Product	Version
ubuntu	ubuntu	12.04
libav	libav	𝑥 ≤ 11.4
opensuse	leap	42.1

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

ffmpeg

bookworm	7:5.1.6-0+deb12u1 fixed
bookworm (security)	7:5.1.6-0+deb12u1 fixed
bullseye	7:4.3.7-0+deb11u1 fixed
bullseye (security)	7:4.3.8-0+deb11u1 fixed
sid	7:7.1-3 fixed
trixie	7:7.1-3 fixed
wheezy	no-dsa

Ubuntu Releases

Ubuntu Product

Codename

ffmpeg

artful	not-affected
bionic	not-affected
cosmic	not-affected
disco	not-affected
precise	dne
trusty	dne
vivid	not-affected
wily	not-affected
xenial	not-affected
yakkety	not-affected
zesty	not-affected

libav

artful	dne
bionic	dne
cosmic	dne
disco	dne
precise	Fixed 4:0.8.17-0ubuntu0.12.04.2 released
trusty	Fixed 6:9.20-0ubuntu0.14.04.1+esm1 released
vivid	ignored
wily	dne
xenial	dne
yakkety	dne
zesty	dne

Common Weakness Enumeration

CWE-189 -

References

http://lists.opensuse.org/opensuse-updates/2016-06/msg00105.html

http://www.securityfocus.com/bid/75932

http://www.ubuntu.com/usn/USN-2944-1

https://blogs.gentoo.org/ago/2015/07/16/libav-divide-by-zero-in-ff_h263_decode_mba/

https://git.libav.org/?p=libav.git%3Ba=commitdiff%3Bh=0a49a62f998747cfa564d98d36a459fe70d3299b

https://libav.org/releases/libav-11.5.changelog

http://lists.opensuse.org/opensuse-updates/2016-06/msg00105.html

http://www.securityfocus.com/bid/75932

http://www.ubuntu.com/usn/USN-2944-1

https://blogs.gentoo.org/ago/2015/07/16/libav-divide-by-zero-in-ff_h263_decode_mba/

https://git.libav.org/?p=libav.git%3Ba=commitdiff%3Bh=0a49a62f998747cfa564d98d36a459fe70d3299b

https://libav.org/releases/libav-11.5.changelog