VYPR
Unrated severityNVD Advisory· Published Aug 20, 2012· Updated Jun 16, 2026

CVE-2011-3940

CVE-2011-3940

Description

nsvdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (out-of-bounds read and write) via a crafted NSV file that triggers "use of uninitialized streams."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

35
  • FFmpeg/Ffmpeg13 versions
    cpe:2.3:a:ffmpeg:ffmpeg:0.7.1:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.11:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.6:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.7:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.8:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.7.9:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.8.10:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.8.5:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.8.6:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.8.7:*:*:*:*:*:*:*
    • cpe:2.3:a:ffmpeg:ffmpeg:0.8.8:*:*:*:*:*:*:*
    • (no CPE)range: >=0.7,<0.7.12; >=0.8,<0.8.11
  • Libav/Libav22 versions
    cpe:2.3:a:libav:libav:0.5:*:*:*:*:*:*:*+ 21 more
    • cpe:2.3:a:libav:libav:0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.2:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.3:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.4:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.5:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.6:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.5.7:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.6.3:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.6.4:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.7:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.7.2:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.7.3:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.7.4:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.8:*:*:*:*:*:*:*
    • cpe:2.3:a:libav:libav:0.8:beta2:*:*:*:*:*:*
    • (no CPE)range: >=0.5,<0.5.9; >=0.6,<0.6.6; >=0.7,<0.7.5; >=0.8,<0.8.1

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.