CVE-2015-3395 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Ffmpeg

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer5 documents5 sources

Severity

6.8MEDIUMNVD

EPSS

0.8%

top 26.08%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Ffmpeg Debian Ffmpeg Libav +1 more

Timeline

PublishedJun 16

Latest updateMay 17

Description

The msrle_decode_pal4 function in msrledec.c in Libav before 10.7 and 11.x before 11.4 and FFmpeg before 2.0.7, 2.2.x before 2.2.15, 2.4.x before 2.4.8, 2.5.x before 2.5.6, and 2.6.x before 2.6.2 allows remote attackers to have unspecified impact via a crafted image, related to a pixel pointer, which triggers an out-of-bounds array access.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages4 packages

▶debiandebian/ffmpeg< ffmpeg 7:2.6.2-1 (bookworm)

▶Debianffmpeg/ffmpeg< 7:2.6.2-1+3

▶NVDlibav/libav10.6+4

▶NVDffmpeg/ffmpeg32 versions+31

Also affects: Ubuntu Linux 12.04

🔴Vulnerability Details

GHSA

GHSA-h626-6f8j-9rc9: The msrle_decode_pal4 function in msrledec↗2022-05-17

▶

OSV

CVE-2015-3395: The msrle_decode_pal4 function in msrledec↗2015-06-16

▶

📋Vendor Advisories

Ubuntu

Libav vulnerabilities↗2016-04-04

▶

Debian

CVE-2015-3395: ffmpeg - The msrle_decode_pal4 function in msrledec.c in Libav before 10.7 and 11.x befor...↗2015

▶