CVE-2014-2097 - OpenCVE

The tak_decode_frame function in libavcodec/takdec.c in FFmpeg before 2.1.4 does not properly validate a certain bits-per-sample value, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted TAK (aka Tom's lossless Audio Kompressor) data.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Ffmpeg	Ffmpeg

Configuration 1 [-]

OR	cpe:2.3:a:ffmpeg:ffmpeg::::::::
	cpe:2.3:a:ffmpeg:ffmpeg:2.0:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:2.0.1:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:2.0.2:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:2.0.3:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:2.1:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:2.1.1:::::::*
	cpe:2.3:a:ffmpeg:ffmpeg:2.1.2:::::::*

References

Link	Resource
http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=f58eab151214d2d35ff0973f2b3e51c5eb372da4
https://security.gentoo.org/glsa/201603-06

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2014-03-02T02:00:00

Updated: 2016-12-01T15:57:02

Reserved: 2014-02-24T00:00:00

Link: CVE-2014-2097

JSON object: View

NVD Information

Status : Modified

Published: 2014-03-02T04:57:25.807

Modified: 2023-11-07T02:19:29.280

Link: CVE-2014-2097

JSON object: View

Redhat Information

No data.

CWE

CWE-20

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-01-31T00:00:00", "descriptions": [{"lang": "en", "value": "The tak_decode_frame function in libavcodec/takdec.c in FFmpeg before 2.1.4 does not properly validate a certain bits-per-sample value, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted TAK (aka Tom's lossless Audio Kompressor) data."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-01T15:57:02", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=f58eab151214d2d35ff0973f2b3e51c5eb372da4"}, {"name": "GLSA-201603-06", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201603-06"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2014-2097", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The tak_decode_frame function in libavcodec/takdec.c in FFmpeg before 2.1.4 does not properly validate a certain bits-per-sample value, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted TAK (aka Tom's lossless Audio Kompressor) data."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://git.videolan.org/?p=ffmpeg.git;a=commit;h=f58eab151214d2d35ff0973f2b3e51c5eb372da4", "refsource": "CONFIRM", "url": "http://git.videolan.org/?p=ffmpeg.git;a=commit;h=f58eab151214d2d35ff0973f2b3e51c5eb372da4"}, {"name": "GLSA-201603-06", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201603-06"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2014-2097", "datePublished": "2014-03-02T02:00:00", "dateReserved": "2014-02-24T00:00:00", "dateUpdated": "2016-12-01T15:57:02", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:*", "matchCriteriaId": "ACEB2D09-F3C6-4BBF-8C6B-48EFE65E1943", "versionEndIncluding": "2.1.3", "vulnerable": true}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "A1337F5B-E9D9-4335-9E05-50018E59E530", "vulnerable": true}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "0B27C609-E4B4-41CD-B228-38267AA3A8AB", "vulnerable": true}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:2.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "C97DBEE2-AF4E-4C2D-A185-F2A1B965D9DA", "vulnerable": true}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:2.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "FDEDAA24-D9E0-4384-B193-0C8814E4FDD6", "vulnerable": true}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:2.1:*:*:*:*:*:*:*", "matchCriteriaId": "B70C00A9-3562-45AB-B494-3BA91B6AFC3E", "vulnerable": true}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:2.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "A30389D2-2873-4F15-B249-066B6D37AC23", "vulnerable": true}, {"criteria": "cpe:2.3:a:ffmpeg:ffmpeg:2.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "0487928D-6630-4E23-BBA5-BED0A0F156B1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The tak_decode_frame function in libavcodec/takdec.c in FFmpeg before 2.1.4 does not properly validate a certain bits-per-sample value, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted TAK (aka Tom's lossless Audio Kompressor) data."}, {"lang": "es", "value": "La funci\u00f3n tak_decode_frame en libavcodec/takdec.c en FFmpeg anterior a 2.1.4 no valida debidamente cierto valor bits-per-sample, lo que permite a atacantes remotos causar una denegaci\u00f3n de servicio (acceso de array fuera de rango) o posiblemente tener otro impacto no especificado a trav\u00e9s de datos TAK manipulados (tambi\u00e9n conocido como Tom's lossless Audio Kompressor)."}], "id": "CVE-2014-2097", "lastModified": "2023-11-07T02:19:29.280", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2014-03-02T04:57:25.807", "references": [{"source": "cve@mitre.org", "url": "http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=f58eab151214d2d35ff0973f2b3e51c5eb372da4"}, {"source": "cve@mitre.org", "url": "https://security.gentoo.org/glsa/201603-06"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}