Vulnerability Details : CVE-2016-6832
Heap-based buffer overflow in the ff_audio_resample function in resample.c in libav before 11.4 allows remote attackers to cause a denial of service (crash) via vectors related to buffer resizing.
Vulnerability category: OverflowDenial of service
Products affected by CVE-2016-6832
- cpe:2.3:a:libav:libav:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2016-6832
0.36%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 68 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-6832
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:N/I:N/A:P |
8.6
|
2.9
|
NIST | |
5.5
|
MEDIUM | CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
1.8
|
3.6
|
NIST |
CWE ids for CVE-2016-6832
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-6832
-
https://bugzilla.libav.org/show_bug.cgi?id=825
Bug 825 – Invalid memory writes with libavresampleExploit;Issue Tracking;Patch;Third Party Advisory;VDB Entry
-
https://git.libav.org/?p=libav.git;a=commit;h=0ac8ff618c5e6d878c547a8877e714ed728950ce
git.libav.org Git - libav.git/commitPatch
-
https://blogs.gentoo.org/ago/2016/08/07/libav-heap-based-buffer-overflow-in-ff_audio_resample-resample-c/
libav: heap-based buffer overflow in ff_audio_resample (resample.c) | agostino's blogExploit;Third Party Advisory
-
http://www.openwall.com/lists/oss-security/2016/08/18/1
oss-security - Re: libav: heap-based buffer overflow in ff_audio_resample (resample.c)Exploit;Mailing List;Patch;Third Party Advisory
-
http://www.openwall.com/lists/oss-security/2016/08/13/1
oss-security - libav: heap-based buffer overflow in ff_audio_resample (resample.c)Exploit;Mailing List;Third Party Advisory
Jump to