CVE-2008-3230
EPSS 0.12%
Description
The ffmpeg lavf demuxer allows user-assisted attackers to cause a denial of service (application crash) via a crafted GIF file, possibly related to gstreamer, as demonstrated by lol-giftopnm.gif.
How to fix CVE-2008-3230
To remediate CVE-2008-3230, upgrade the affected package to a fixed version below.
- Debian/ffmpeg—upgrade to 0.svn20080206-16 or later
Is CVE-2008-3230 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 0.svn20080206-16