CVE-2015-6826

EUVD-2015-6763
The ff_rv34_decode_init_thread_copy function in libavcodec/rv34.c in FFmpeg before 2.7.2 does not initialize certain structure members, which allows remote attackers to cause a denial of service (invalid pointer access) or possibly have unspecified other impact via crafted (1) RV30 or (2) RV40 RealVideo data.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
Affected Products (NVD)
VendorProductVersion
canonicalubuntu_linux
12.04
ffmpegffmpeg
𝑥
≤ 2.7.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
ffmpeg
bookworm
7:5.1.6-0+deb12u1
fixed
bookworm (security)
7:5.1.6-0+deb12u1
fixed
bullseye
7:4.3.7-0+deb11u1
fixed
bullseye (security)
7:4.3.8-0+deb11u1
fixed
sid
7:7.1-3
fixed
trixie
7:7.1-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
ffmpeg
artful
not-affected
bionic
not-affected
precise
dne
trusty
dne
vivid
not-affected
wily
not-affected
xenial
not-affected
yakkety
not-affected
zesty
not-affected
libav
artful
dne
bionic
dne
precise
Fixed 4:0.8.17-0ubuntu0.12.04.2
released
trusty
ignored
vivid
ignored
wily
dne
xenial
dne
yakkety
dne
zesty
dne
Common Weakness Enumeration
References
http://ffmpeg.org/security.html
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=3197c0aa87a3b7190e17d49e6fbc7b554e4b3f0a
http://www.securitytracker.com/id/1033483
http://www.ubuntu.com/usn/USN-2944-1
https://lists.debian.org/debian-lts-announce/2018/12/msg00009.html
http://ffmpeg.org/security.html
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=3197c0aa87a3b7190e17d49e6fbc7b554e4b3f0a
http://www.securitytracker.com/id/1033483
http://www.ubuntu.com/usn/USN-2944-1
https://lists.debian.org/debian-lts-announce/2018/12/msg00009.html