VYPR

Ffmpeg

by FFmpeg

Source repositories

CVEs (507)

  • CVE-2018-7751MedApr 24, 2018
    risk 0.42cvss 6.5epss 0.02

    The svg_probe function in libavformat/img2dec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (Infinite Loop) via a crafted XML file.

  • CVE-2018-10001MedApr 11, 2018
    risk 0.42cvss 6.5epss 0.02

    The decode_init function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via an AVI file.

  • CVE-2018-6912MedFeb 12, 2018
    risk 0.42cvss 6.5epss 0.02

    The decode_plane function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via a crafted AVI file.

  • CVE-2018-6392MedJan 29, 2018
    risk 0.42cvss 6.5epss 0.02

    The filter_slice function in libavfilter/vf_transpose.c in FFmpeg through 3.4.1 allows remote attackers to cause a denial of service (out-of-array access) via a crafted MP4 file.

  • CVE-2017-1000460MedJan 3, 2018
    risk 0.42cvss 6.5epss 0.00

    In line libavcodec/h264dec.c:500 in libav(v13_dev0), ffmpeg(n3.4), chromium(56 prior Feb 13, 2017), the return value of init_get_bits is ignored and get_ue_golomb(&gb) is called on an uninitialized get_bits context, which causes a NULL deref exception.

  • CVE-2017-17555MedDec 12, 2017
    risk 0.42cvss 6.5epss 0.01

    The swri_audio_convert function in audioconvert.c in FFmpeg libswresample through 3.0.101, as used in FFmpeg 3.4.1, aubio 0.4.6, and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted audio file.

  • CVE-2017-17081MedNov 30, 2017
    risk 0.42cvss 6.5epss 0.02

    The gmc_mmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly validate widths and heights, which allows remote attackers to cause a denial of service (integer signedness error and out-of-array read) via a crafted MPEG file.

  • CVE-2017-15186MedOct 24, 2017
    risk 0.42cvss 6.5epss 0.02

    Double free vulnerability in FFmpeg 3.3.4 and earlier allows remote attackers to cause a denial of service via a crafted AVI file.

  • CVE-2017-14223MedSep 9, 2017
    risk 0.42cvss 6.5epss 0.03

    In libavformat/asfdec_f.c in FFmpeg 3.3.3, a DoS in asf_build_simple_index() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but does not contain sufficient backing data, is…

  • CVE-2017-14222MedSep 9, 2017
    risk 0.42cvss 6.5epss 0.02

    In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption. When a crafted MOV file, which claims a large "item_count" field in the header but does not contain sufficient backing data, is…

  • CVE-2017-14171MedSep 7, 2017
    risk 0.42cvss 6.5epss 0.02

    In libavformat/nsvdec.c in FFmpeg 2.4 and 3.3.3, a DoS in nsv_parse_NSVf_header() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted NSV file, which claims a large "table_entries_used" field in the header but does not contain sufficient…

  • CVE-2017-14170MedSep 7, 2017
    risk 0.42cvss 6.5epss 0.02

    In libavformat/mxfdec.c in FFmpeg 3.3.3 -> 2.4, a DoS in mxf_read_index_entry_array() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted MXF file, which claims a large "nb_index_entries" field in the header but does not contain sufficient…

  • CVE-2017-14059MedAug 31, 2017
    risk 0.42cvss 6.5epss 0.02

    In FFmpeg 3.3.3, a DoS in cine_read_header() due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing…

  • CVE-2017-14058MedAug 31, 2017
    risk 0.42cvss 6.5epss 0.02

    In FFmpeg 2.4 and 3.3.3, the read_data function in libavformat/hls.c does not restrict reload attempts for an insufficient list, which allows remote attackers to cause a denial of service (infinite loop).

  • CVE-2017-14057MedAug 31, 2017
    risk 0.42cvss 6.5epss 0.02

    In FFmpeg 3.3.3, a DoS in asf_read_marker() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption. When a crafted ASF file, which claims a large "name_len" or "count" field in the header but does not contain sufficient backing data, is provided,…

  • CVE-2017-14056MedAug 31, 2017
    risk 0.42cvss 6.5epss 0.02

    In libavformat/rl2.c in FFmpeg 3.3.3, a DoS in rl2_read_header() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption. When a crafted RL2 file, which claims a large "frame_count" field in the header but does not contain sufficient backing data,…

  • CVE-2017-14055MedAug 31, 2017
    risk 0.42cvss 6.5epss 0.02

    In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mv_read_header() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption. When a crafted MV file, which claims a large "nb_frames" field in the header but does not contain sufficient backing data, is…

  • CVE-2017-14054MedAug 31, 2017
    risk 0.42cvss 6.5epss 0.02

    In libavformat/rmdec.c in FFmpeg 3.3.3, a DoS in ivr_read_header() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted IVR file, which claims a large "len" field in the header but does not contain sufficient backing data, is provided, the…

  • CVE-2016-2213MedFeb 3, 2016
    risk 0.42cvss 6.5epss 0.02

    The jpeg2000_decode_tile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.6 allows remote attackers to cause a denial of service (out-of-bounds array read access) via crafted JPEG 2000 data.

  • CVE-2016-1898MedJan 15, 2016
    risk 0.37cvss 5.5epss 0.13

    FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains an arbitrary line of a local file.

Page 4 of 26