Libav
Sign in to watchby Libav
CVEs (67)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-9051 | Cri | 0.64 | 9.8 | 0.00 | May 18, 2017 | libav before 12.1 is vulnerable to an invalid read of size 1 due to NULL pointer dereferencing in the nsv_read_chunk function in libavformat/nsvdec.c. | |
| CVE-2017-17130 | Hig | 0.57 | 8.8 | 0.00 | Dec 4, 2017 | The ff_free_picture_tables function in libavcodec/mpegpicture.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file, related to vc1_decode_i_blocks_adv. | |
| CVE-2017-17129 | Hig | 0.57 | 8.8 | 0.00 | Dec 4, 2017 | The ff_vc1_mc_4mv_chroma4 function in libavcodec/vc1_mc.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault and application crash) or possibly have unspecified other impact via a crafted file. | |
| CVE-2017-16803 | Hig | 0.49 | 7.5 | 0.01 | Nov 13, 2017 | In Libav through 11.11 and 12.x through 12.1, the smacker_decode_tree function in libavcodec/smacker.c does not properly restrict tree recursion, which allows remote attackers to cause a denial of service (bitstream.c:build_table() out-of-bounds read and application crash) via a crafted Smacker stream. | |
| CVE-2017-11684 | Hig | 0.49 | 7.5 | 0.01 | Jul 27, 2017 | There is an illegal address access in the build_table function in libavcodec/bitstream.c of Libav 12.1 that will lead to remote denial of service via crafted input. | |
| CVE-2017-9987 | Hig | 0.49 | 7.5 | 0.00 | Jun 28, 2017 | There is a heap-based buffer overflow in the function hpel_motion in mpegvideo_motion.c in libav 12.1. A crafted input can lead to a remote denial of service attack. | |
| CVE-2017-7208 | Hig | 0.46 | 7.1 | 0.00 | Mar 21, 2017 | The decode_residual function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service (buffer over-read) or obtain sensitive information from process memory via a crafted h264 video file. | |
| CVE-2017-7206 | Hig | 0.46 | 7.1 | 0.00 | Mar 21, 2017 | The ff_h2645_extract_rbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read) or obtain sensitive information from process memory via a crafted h264 video file. | |
| CVE-2017-17128 | Med | 0.42 | 6.5 | 0.00 | Dec 4, 2017 | The h264_slice_init function in libavcodec/h264_slice.c in Libav 12.2 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted file. | |
| CVE-2017-17127 | Med | 0.42 | 6.5 | 0.00 | Dec 4, 2017 | The vc1_decode_frame function in libavcodec/vc1dec.c in Libav 12.2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file. | |
| CVE-2016-9826 | Med | 0.36 | 5.5 | 0.00 | Mar 1, 2017 | libavcodec/ituh263dec.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via vectors involving left shift of a negative value. | |
| CVE-2016-9825 | Med | 0.36 | 5.5 | 0.00 | Mar 1, 2017 | libswscale/utils.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via vectors involving left shift of a negative value. | |
| CVE-2016-9824 | Med | 0.36 | 5.5 | 0.00 | Mar 1, 2017 | Integer overflow in libswscale/x86/swscale.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via a crafted file. | |
| CVE-2016-9823 | Med | 0.36 | 5.5 | 0.00 | Mar 1, 2017 | libavcodec/x86/mpegvideo.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via a crafted file. | |
| CVE-2016-9822 | Med | 0.36 | 5.5 | 0.00 | Mar 1, 2017 | Integer overflow in libavcodec/mpeg12dec.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via a crafted file. | |
| CVE-2016-9821 | Med | 0.36 | 5.5 | 0.00 | Mar 1, 2017 | Integer overflow in libavcodec/mpegvideo_parser.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via a crafted file. | |
| CVE-2016-9820 | Med | 0.36 | 5.5 | 0.00 | Mar 1, 2017 | libavcodec/mpegvideo_motion.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via vectors involving left shift of a negative value. | |
| CVE-2016-9819 | Med | 0.36 | 5.5 | 0.00 | Mar 1, 2017 | libavcodec/mpegvideo.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via vectors involving left shift of a negative value. | |
| CVE-2016-8676 | Med | 0.36 | 5.5 | 0.00 | Feb 15, 2017 | The get_vlc2 function in get_bits.h in Libav 11.9 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted mp3 file. NOTE: this issue exists due to an incomplete fix for CVE-2016-8675. | |
| CVE-2025-8585 | Med | 0.34 | 5.3 | 0.00 | Aug 5, 2025 | A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The bug was initially reported by the researcher to the wrong project. This vulnerability only affects products that are no longer supported by the maintainer. |