CVE-2022-38860

MEDIUM

The MPlayer Project <13.0.1 - Divide By Zero

Title source: llm

Description

Certain The MPlayer Project products are vulnerable to Divide By Zero via function demux_open_avi() of libmpdemux/demux_avi.c which affects mencoder. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

References (2)

Scores

CVSS v3 5.5
EPSS 0.0006
EPSS Percentile 18.1%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Classification

CWE
CWE-369
Status published

Affected Products (3)

mplayerhq/mencoder
mplayerhq/mplayer
debian/debian_linux

Timeline

Published Sep 15, 2022
Tracked Since Feb 18, 2026