【安全公告:UTSA-2022-000417】-【CVE-2014-125007】

发布日期:2022-10-31

基本信息

漏洞编号: CVE-2014-125007

受影响系统版本: 服务器D版

受影响源码包: ffmpeg

修复版本: 7:4.1.9.6-deepin6

CWE编号: CWE-787

漏洞等级: 中危

CVSS_v3评分: 5.5

漏洞描述

A vulnerability classified as problematic was found in FFmpeg 2.0. Affected by this vulnerability is the function intra_pred of the file libavcodec/hevcpred_template.c. The manipulation leads to memory corruption. The attack can be launched remotely. It is recommended to apply a patch to fix this issue.

修复方式

sudo apt update && sudo apt dist-upgrade

是否受影响判断

判断方法:apt policy PackageName
结果说明:版本小于修复版本,则受此漏洞影响,版本大于等于修复版本,则此漏洞已修复。

补丁链接

暂无