How severe is CVE-2019-15942?

CVE-2019-15942 has a CVSS v3 score of 8.8 (HIGH).

CVE-2019-15942

Name: ffmpeg
Author: ffmpeg

8.8HIGH

FFmpeg through 4.2 has a "Conditional jump or move depends on uninitialised value" issue in h2645_parse because alloc_rbsp_buffer in libavcodec/h2645_parse.c mishandles rbsp_buffer.

Publicado: 9/5/2019Actualizado: 11/21/2024

Descripción

FFmpeg through 4.2 has a "Conditional jump or move depends on uninitialised value" issue in h2645_parse because alloc_rbsp_buffer in libavcodec/h2645_parse.c mishandles rbsp_buffer.

Análisis IAImpulsado por IA

Productos Afectados

ffmpegffmpeg

Referencias

http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00012.html
Broken Link
https://security.gentoo.org/glsa/202007-58
Third Party Advisory
https://trac.ffmpeg.org/ticket/8093
ExploitThird Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00012.html
Broken Link
https://security.gentoo.org/glsa/202007-58
Third Party Advisory
https://trac.ffmpeg.org/ticket/8093
ExploitThird Party Advisory