CVE-2014-7933

EPSS 5.9%

libav - security update

Published: 1/22/2015Modified: 4/28/2026

Description

Use-after-free vulnerability in the matroska_read_seek function in libavformat/matroskadec.c in FFmpeg before 2.5.1, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska file that triggers improper maintenance of tracks data.

Affected packages (2)

Debian/ffmpegfrom 0, < 7:2.5.1-1
Debian/libavfrom 0, < 6:0.8.17-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-7933