VDB
DEBIAN-CVE-2011-3940
DEBIAN-CVE-2011-3940
PUBLISHED
CVSS 8.699999809265137 HIGH
nsvdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (out-of-bounds read and write) via a crafted NSV file that triggers "use of uninitialized streams."
Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | ffmpeg | 0, 0, 0 |
| Debian:11 | ffmpeg | 0, 0, 0 |
| Debian:13 | ffmpeg | 0, 0, 0 |
| Debian:12 | ffmpeg | 0, 0, 0 |
Timeline
- Aug 20, 2012 CVE Published
- Apr 28, 2026 CVE Updated