Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2020-35965

Published: 04/01/2021 Updated: 05/11/2021
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Ffmpeg

Vulnerability Summary

It exists that FFmpeg incorrectly handled file conversion to APNG format. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. (CVE-2020-21041)

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

ffmpeg ffmpeg

debian debian linux 9.0

debian debian linux 10.0

Vendor Advisories

Ubuntu Security Notice: USN-5472-1: FFmpeg vulnerabilities
Several security issues were fixed in FFmpeg ...
Debian CVElist Bug Report Logs: ffmpeg: CVE-2020-35965
Debian Bug report logs - #979999 ffmpeg: CVE-2020-35965 Package: src:ffmpeg; Maintainer for src:ffmpeg is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 12 Jan 2021 18:12:02 UTC Severity: important Tags: security, upstream Found in ...
Debian CVElist Bug Report Logs: ffmpeg: CVE-2020-35964
Debian Bug report logs - #980000 ffmpeg: CVE-2020-35964 Package: src:ffmpeg; Maintainer for src:ffmpeg is Debian Multimedia Maintainers <debian-multimedia@listsdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Tue, 12 Jan 2021 18:15:01 UTC Severity: important Tags: security, upstream Found in ...
Debian Security Advisories: DSA-4990-1 ffmpeg -- security update
Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed For the oldstable distribution (buster), these problems have been fixed in version 7:418-0+deb10u1 We recommend that you upgrade your ffm ...
Arch Linux Issues:
decode_frame in libavcodec/exrc in FFmpeg 431 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations ...

References

CWE-787https://github.com/FFmpeg/FFmpeg/commit/3e5959b3457f7f1856d997261e6ac672bba49e8bhttps://bugs.chromium.org/p/oss-fuzz/issues/detail?id=26532https://github.com/FFmpeg/FFmpeg/commit/b0a8b40294ea212c1938348ff112ef1b9bf16bb3https://lists.debian.org/debian-lts-announce/2021/01/msg00026.htmlhttps://security.gentoo.org/glsa/202105-24https://www.debian.org/security/2021/dsa-4990https://ubuntu.com/security/notices/USN-5472-1https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946CVE-2024-30309CVE-2024-4761CVE-2024-30051type confusionmemory leakCVE-2024-30293reflected XSSCVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook