FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
80c66af0-d1c5-449e-bd31-63b12525ff88ffmpeg -- out-of-bounds array access

NVD reports:

The msrle_decode_pal4 function in msrledec.c in Libav before 10.7 and 11.x before 11.4 and FFmpeg before 2.0.7, 2.2.x before 2.2.15, 2.4.x before 2.4.8, 2.5.x before 2.5.6, and 2.6.x before 2.6.2 allows remote attackers to have unspecified impact via a crafted image, related to a pixel pointer, which triggers an out-of-bounds array access.


Discovery 2015-04-12
Entry 2015-09-01
Modified 2018-03-25
libav
ge 11.0 lt 11.4

< 10.7

gstreamer1-libav
< 1.5.1

handbrake
< 1.2.0

ffmpeg
ge 2.2.0,1 lt 2.2.15,1

< 2.0.7,1

ffmpeg26
< 2.6.2

ffmpeg25
< 2.5.6

ffmpeg24
< 2.4.8

ffmpeg23
ge 0

ffmpeg1
ge 0

avidemux
avidemux26
< 2.6.11

kodi
< 15.1

mplayer
mencoder
< 1.1.r20150403

mythtv
mythtv-frontend
le 0.27.5,1

CVE-2015-3395
https://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=f7e1367f58263593e6cee3c282f7277d7ee9d553
https://git.libav.org/?p=libav.git;a=commit;h=5ecabd3c54b7c802522dc338838c9a4c2dc42948
https://ffmpeg.org/security.html
https://git.libav.org/?p=libav.git;a=blob;f=Changelog;hb=refs/tags/v11.4