CVE-2019-13390
Published: 7 July 2019
In FFmpeg 4.1.3, there is a division by zero at adx_write_trailer in libavformat/rawenc.c.
Priority
Severity score breakdown
Parameter | Value |
---|---|
Base score | 6.5 |
Attack vector | Network |
Attack complexity | Low |
Privileges required | None |
User interaction | Required |
Scope | Unchanged |
Confidentiality | None |
Integrity impact | None |
Availability impact | High |
Vector | CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13390
- https://trac.ffmpeg.org/ticket/7979
- https://trac.ffmpeg.org/ticket/7981
- https://trac.ffmpeg.org/ticket/7982
- https://trac.ffmpeg.org/ticket/7983
- https://trac.ffmpeg.org/ticket/7985
- https://ubuntu.com/security/notices/USN-4431-1
- NVD
- Launchpad
- Debian