CVE-2013-0873
EPSS 2.0%
Description
The read_header function in libavcodec/shorten.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via an invalid channel count, related to "freeing invalid addresses."
How to fix CVE-2013-0873
To remediate CVE-2013-0873, upgrade the affected package to a fixed version below.
- Debian/ffmpeg—upgrade to 7:2.4.1-1 or later
Is CVE-2013-0873 being exploited?
Low — EPSS is 2.0%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 7:2.4.1-1