CVE-2011-3940: Buffer Overflow
First published: Mon Aug 20 2012(Updated: )
nsvdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (out-of-bounds read and write) via a crafted NSV file that triggers "use of uninitialized streams."
Credit: cve-coordination@google.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| FFmpeg | =0.7.7 | |
| FFmpeg | =0.7.1 | |
| FFmpeg | =0.7.6 | |
| FFmpeg | =0.7.8 | |
| FFmpeg | =0.7.9 | |
| FFmpeg | =0.7.11 | |
| FFmpeg | =0.7.2 | |
| FFmpeg | =0.8.6 | |
| FFmpeg | =0.8.5 | |
| FFmpeg | =0.8.10 | |
| FFmpeg | =0.8.7 | |
| FFmpeg | =0.8.8 | |
| Libav | =0.5.6 | |
| Libav | =0.5.7 | |
| Libav | =0.5.3 | |
| Libav | =0.5 | |
| Libav | =0.5.2 | |
| Libav | =0.5.5 | |
| Libav | =0.5.4 | |
| Libav | =0.5.1 | |
| Libav | =0.6.5 | |
| Libav | =0.6.2 | |
| Libav | =0.6.4 | |
| Libav | =0.6.3 | |
| Libav | =0.6.1 | |
| Libav | =0.6 | |
| Libav | =0.7 | |
| Libav | =0.7.4 | |
| Libav | =0.7.1 | |
| Libav | =0.7.2 | |
| Libav | =0.7.3 | |
| Libav | =0.8 | |
| Libav | =0.8-beta2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=c898431ca5ef2a997fe9388b650f658fb60783e5
- http://www.debian.org/security/2012/dsa-2471
- http://ffmpeg.org/
- http://www.ubuntu.com/usn/USN-1479-1
- http://libav.org/
- http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=5c011706bc752d34bc6ada31d7df2ca0c9af7c6b
- http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=8fd8a48263ff1437f9d02d7e78dc63efb9b5ed3a
- http://secunia.com/advisories/49089
- http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=c898431ca5ef2a997fe9388b650f658fb60783e5
- http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=8fd8a48263ff1437f9d02d7e78dc63efb9b5ed3a
- http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=5c011706bc752d34bc6ada31d7df2ca0c9af7c6b
Frequently Asked Questions
What is the severity of CVE-2011-3940?
CVE-2011-3940 has a medium severity level due to its potential to cause denial of service via crafted NSV files.
How do I fix CVE-2011-3940?
To fix CVE-2011-3940, update FFmpeg to versions 0.7.12 or 0.8.11, or Libav to versions 0.5.9, 0.6.6, 0.7.5, or 0.8.1 or later.
Which versions are affected by CVE-2011-3940?
CVE-2011-3940 affects FFmpeg versions prior to 0.7.12 and 0.8.11, as well as Libav versions prior to 0.5.9, 0.6.6, 0.7.5, and 0.8.1.
What type of vulnerability is CVE-2011-3940?
CVE-2011-3940 is a denial of service vulnerability caused by out-of-bounds read and write in the nsvdec.c module.
Can CVE-2011-3940 be exploited remotely?
Yes, CVE-2011-3940 can be exploited remotely by attackers using specially crafted NSV files.
- agent/type
- agent/remedy
- agent/weakness
- agent/severity
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/first-publish-date
- agent/event
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/ffmpeg
- canonical/ffmpeg
- version/ffmpeg/0.7.7
- version/ffmpeg/0.7.1
- version/ffmpeg/0.7.6
- version/ffmpeg/0.7.8
- version/ffmpeg/0.7.9
- version/ffmpeg/0.7.11
- version/ffmpeg/0.7.2
- version/ffmpeg/0.8.6
- version/ffmpeg/0.8.5
- version/ffmpeg/0.8.10
- version/ffmpeg/0.8.7
- version/ffmpeg/0.8.8
- vendor/libav
- canonical/libav
- version/libav/0.5.6
- version/libav/0.5.7
- version/libav/0.5.3
- version/libav/0.5
- version/libav/0.5.2
- version/libav/0.5.5
- version/libav/0.5.4
- version/libav/0.5.1
- version/libav/0.6.5
- version/libav/0.6.2
- version/libav/0.6.4
- version/libav/0.6.3
- version/libav/0.6.1
- version/libav/0.6
- version/libav/0.7
- version/libav/0.7.4
- version/libav/0.7.1
- version/libav/0.7.2
- version/libav/0.7.3
- version/libav/0.8
- version/libav/0.8-beta2