CVE-2016-7424

Published: Oct 7, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

The put_no_rnd_pixels8_xy2_mmx function in x86/rnd_template.c in libav 11.7 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted MP3 file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://git.libav.org/?p=libav.git%3Ba=commit%3Bh=136f55207521f0b03194ef5b55ba70f1635d6aee

x_refsource_CONFIRM

DSA-3685

vendor-advisory

x_refsource_DEBIAN

93038

vdb-entry

x_refsource_BID

[oss-security] 20160917 libav: NULL pointer dereference in put_no_rnd_pixels8_xy2_mmx (rnd_template.c)

mailing-list

x_refsource_MLIST

[oss-security] 20160916 Re: libav: NULL pointer dereference in put_no_rnd_pixels8_xy2_mmx (rnd_template.c)

mailing-list

x_refsource_MLIST

[oss-security] 20160917 Re: Re: libav: NULL pointer dereference in put_no_rnd_pixels8_xy2_mmx (rnd_template.c)

mailing-list

x_refsource_MLIST

https://bugzilla.libav.org/show_bug.cgi?id=962

x_refsource_CONFIRM

https://blogs.gentoo.org/ago/2016/09/17/libav-null-pointer-dereference-in-put_no_rnd_pixels8_xy2_mmx-rnd_template-c/

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-7424

Description

Affected Products

References