CVE-2011-3936
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2011-3936
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2011-3936.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2011-3936
- Downstream
- Published
- 2012-08-20T18:55:01Z
- Modified
- 2025-08-09T19:01:26Z
- Summary
- [none]
- Details
-
The dvextractaudio function in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted DV file.
- References
-
- http://secunia.com/advisories/49089
- http://www.debian.org/security/2012/dsa-2471
- http://www.ubuntu.com/usn/USN-1479-1
- http://ffmpeg.org/
- http://git.libav.org/?p=libav.git%3Ba=commit%3Bh=635bcfccd439480003b74a665b5aa7c872c1ad6b
- http://git.libav.org/?p=libav.git%3Ba=commitdiff%3Bh=2d1c0dea5f6b91bec7f5fa53ec050913d851e366
- http://libav.org/