OpenCVE

The ff_ass_split_override_codes function in libavcodec/ass_split.c in FFmpeg before 1.0.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a subtitle dialog without text.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:M/Au:N/C:N/I:N/A:P

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ffmpeg	Ffmpeg

Configuration 1 [-]

OR	cpe:2.3:a:ffmpeg:ffmpeg::::::::
	cpe:2.3:a:ffmpeg:ffmpeg:1.0:::::::*

No data.

References

Link	Providers
http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=20c121c00747d6c3b0b0f98deeff021171b2ed74
http://secunia.com/advisories/51964
http://www.ffmpeg.org/security.html
http://www.osvdb.org/89592
https://trac.ffmpeg.org/ticket/2048

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2013-12-24T20:00:00Z

Updated: 2024-09-16T17:09:13.870Z

Reserved: 2013-12-24T00:00:00Z

Link: CVE-2012-6615

Vulnrichment

No data.

NVD

Status : Modified

Published: 2013-12-24T20:55:04.560

Modified: 2023-11-07T02:13:31.093

Link: CVE-2012-6615

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The ff_ass_split_override_codes function in libavcodec/ass_split.c in FFmpeg before 1.0.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a subtitle dialog without text."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2013-12-24T20:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=20c121c00747d6c3b0b0f98deeff021171b2ed74"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.ffmpeg.org/security.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://trac.ffmpeg.org/ticket/2048"}, {"name": "89592", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/89592"}, {"name": "51964", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/51964"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2012-6615", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The ff_ass_split_override_codes function in libavcodec/ass_split.c in FFmpeg before 1.0.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a subtitle dialog without text."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=20c121c00747d6c3b0b0f98deeff021171b2ed74", "refsource": "CONFIRM", "url": "http://git.videolan.org/?p=ffmpeg.git;a=commitdiff;h=20c121c00747d6c3b0b0f98deeff021171b2ed74"}, {"name": "http://www.ffmpeg.org/security.html", "refsource": "CONFIRM", "url": "http://www.ffmpeg.org/security.html"}, {"name": "https://trac.ffmpeg.org/ticket/2048", "refsource": "CONFIRM", "url": "https://trac.ffmpeg.org/ticket/2048"}, {"name": "89592", "refsource": "OSVDB", "url": "http://www.osvdb.org/89592"}, {"name": "51964", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/51964"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T21:36:01.446Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=20c121c00747d6c3b0b0f98deeff021171b2ed74"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.ffmpeg.org/security.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://trac.ffmpeg.org/ticket/2048"}, {"name": "89592", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/89592"}, {"name": "51964", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/51964"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2012-6615", "datePublished": "2013-12-24T20:00:00Z", "dateReserved": "2013-12-24T00:00:00Z", "dateUpdated": "2024-09-16T17:09:13.870Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:*", "matchCriteriaId": "2915009E-B985-4C8C-AA92-A7DD5A023AED", "versionEndIncluding": "1.0.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "23E57BB1-DF1E-4173-BE52-72E2B3E6BA23", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The ff_ass_split_override_codes function in libavcodec/ass_split.c in FFmpeg before 1.0.2 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a subtitle dialog without text."}, {"lang": "es", "value": "La funci\u00f3n ff_ass_split_override_codes en libavcodec/ass_split.c en FFmpeg anteriores a 1.0.2 permite a atacantes remotos causar denegaci\u00f3n de servicio (referencia a puntero NULL y ca\u00edda) a trav\u00e9s de un di\u00e1logo de subt\u00edtulos sin texto."}], "evaluatorComment": "Per: http://cwe.mitre.org/data/definitions/476.html\n\n\"CWE-476: NULL Pointer Dereference\"\n\nAC:M for notation of file in bug report\n\n\" ffmpeg crashes reproducibly when converting files with some subtitles.\ni've seen the crash with self-compiled ffmpeg 1.0 as well as the Mac OS X binary (linked to from the hompage) for 1.0.1.\n\ndownload the sample file:\n?https://dl.dropbox.com/u/7221986/ffmpeg-bug.mkv\"", "id": "CVE-2012-6615", "lastModified": "2023-11-07T02:13:31.093", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2013-12-24T20:55:04.560", "references": [{"source": "cve@mitre.org", "url": "http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=20c121c00747d6c3b0b0f98deeff021171b2ed74"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/51964"}, {"source": "cve@mitre.org", "url": "http://www.ffmpeg.org/security.html"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/89592"}, {"source": "cve@mitre.org", "url": "https://trac.ffmpeg.org/ticket/2048"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}