SecuritySpace - CVE-2015-6820

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2015-6820

Description: The ff_sbr_apply function in libavcodec/aacsbr.c in FFmpeg before 2.7.2 does not check for a matching AAC frame syntax element before proceeding with Spectral Band Replication calculations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted AAC data.

Test IDs: 1.3.6.1.4.1.25623.1.0.891611

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2015-6820
https://lists.debian.org/debian-lts-announce/2018/12/msg00009.html
http://www.securitytracker.com/id/1033483
http://www.ubuntu.com/usn/USN-2944-1

CVE ID:	CVE-2015-6820
Description:	The ff_sbr_apply function in libavcodec/aacsbr.c in FFmpeg before 2.7.2 does not check for a matching AAC frame syntax element before proceeding with Spectral Band Replication calculations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted AAC data.
Test IDs:	1.3.6.1.4.1.25623.1.0.891611
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2015-6820 https://lists.debian.org/debian-lts-announce/2018/12/msg00009.html http://www.securitytracker.com/id/1033483 http://www.ubuntu.com/usn/USN-2944-1