| Revision Date: | 2019-02-04 | Version: | 1 | | Title: | CVE-2019-1000016 on Ubuntu 18.10 (cosmic) - medium. | | Description: | FFMPEG version 4.1 contains a CWE-129: Improper Validation of Array Index vulnerability in libavcodec/cbs_av1.c that can result in Denial of service. This attack appears to be exploitable via specially crafted AV1 file has to be provided as input. This vulnerability appears to have been fixed in after commit b97a4b658814b2de8b9f2a3bce491c002d34de31.
| | Family: | unix | Class: | vulnerability | | Status: | | Reference(s): | CVE-2019-1000016
| | Platform(s): | Ubuntu 18.10
| Product(s): | | | Definition Synopsis | | Ubuntu 18.10 (cosmic) is installed. AND Package Information
NOT ffmpeg package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libavcodec-extra package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libavcodec-extra58 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libavcodec58 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libavdevice58 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libavfilter-extra package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libavfilter-extra7 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libavfilter7 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libavformat58 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libavresample4 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libavutil56 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libpostproc55 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libswresample3 package in cosmic, while related to the CVE in some way, is not affected.
OR NOT libswscale5 package in cosmic, while related to the CVE in some way, is not affected.
|
|