VYPR

Ffmpeg

by FFmpeg

Source repositories

CVEs (507)

  • CVE-2008-4868Nov 1, 2008
    risk 0.00cvss epss 0.02

    Unspecified vulnerability in the avcodec_close function in libavcodec/utils.c in FFmpeg 0.4.9 before r14787, as used by MPlayer, has unknown impact and attack vectors, related to a free "on random pointers."

  • CVE-2008-4867Nov 1, 2008
    risk 0.00cvss epss 0.02

    Buffer overflow in libavcodec/dca.c in FFmpeg 0.4.9 before r14917, as used by MPlayer, allows context-dependent attackers to have an unknown impact via vectors related to an incorrect DCA_MAX_FRAME_SIZE value.

  • CVE-2008-4866Nov 1, 2008
    risk 0.00cvss epss 0.05

    Multiple buffer overflows in libavformat/utils.c in FFmpeg 0.4.9 before r14715, as used by MPlayer, allow context-dependent attackers to have an unknown impact via vectors related to execution of DTS generation code with a delay greater than MAX_REORDER_DELAY.

  • CVE-2008-3230Jul 18, 2008
    risk 0.00cvss epss 0.00

    The ffmpeg lavf demuxer allows user-assisted attackers to cause a denial of service (application crash) via a crafted GIF file, possibly related to gstreamer, as demonstrated by lol-giftopnm.gif.

  • CVE-2006-4800Sep 14, 2006
    risk 0.00cvss epss 0.05

    Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530 allow remote attackers to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c,…

  • CVE-2006-4799Sep 14, 2006
    risk 0.00cvss epss 0.03

    Buffer overflow in ffmpeg for xine-lib before 1.1.2 might allow context-dependent attackers to execute arbitrary code via a crafted AVI file and "bad indexes", a different vulnerability than CVE-2005-4048 and CVE-2006-2802.

  • CVE-2005-4048Dec 7, 2005
    risk 0.00cvss epss 0.05

    Heap-based buffer overflow in the avcodec_default_get_buffer function (utils.c) in FFmpeg libavcodec 0.4.9-pre1 and earlier, as used in products such as (1) mplayer, (2) xine-lib, (3) Xmovie, and (4) GStreamer, allows remote attackers to execute arbitrary commands via small PNG…

Page 26 of 26