VYPR

Vendor CVEs

FFmpeg

All CVEs

510 total · sorted by risk
  • CVE-2014-125005Jun 18, 2022
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, was found in FFmpeg 2.0. This affects the function decode_vol_header of the file libavcodec/mpeg4videodec.c. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. It is recommended to…

  • CVE-2014-125004Jun 18, 2022
    risk 0.00cvss epss 0.01

    A vulnerability has been found in FFmpeg 2.0 and classified as problematic. This vulnerability affects the function decode_hextile of the file libavcodec/vmnc.c. The manipulation leads to memory corruption. The attack can be initiated remotely. It is recommended to apply a patch…

  • CVE-2014-125003Jun 18, 2022
    risk 0.00cvss epss 0.01

    A vulnerability was found in FFmpeg 2.0 and classified as problematic. This issue affects the function get_siz of the file libavcodec/jpeg2000dec.c. The manipulation leads to memory corruption. The attack may be initiated remotely. It is recommended to apply a patch to fix this…

  • CVE-2014-125002Jun 18, 2022
    risk 0.00cvss epss 0.01

    A vulnerability was found in FFmpeg 2.0. It has been classified as problematic. Affected is the function dnxhd_init_rc of the file libavcodec/dnxhdenc.c. The manipulation leads to memory corruption. It is possible to launch the attack remotely. It is recommended to apply a patch…

  • CVE-2022-1475May 2, 2022
    risk 0.00cvss epss 0.01

    An integer overflow vulnerability was found in FFmpeg versions before 4.4.2 and before 5.0.1 in g729_parse() in llibavcodec/g729_parser.c when processing a specially crafted file.

  • CVE-2021-40426Apr 14, 2022
    risk 0.00cvss epss 0.02

    A heap-based buffer overflow vulnerability exists in the sphere.c start_read() functionality of Sound Exchange libsox 14.4.2 and master commit 42b3557e. A specially-crafted file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this…

  • CVE-2020-23906Nov 10, 2021
    risk 0.00cvss epss 0.00

    FFmpeg N-98388-g76a3ee996b allows attackers to cause a denial of service (DoS) via a crafted audio file due to insufficient verification of data authenticity.

  • CVE-2021-38093Sep 20, 2021
    risk 0.00cvss epss 0.01

    Integer Overflow vulnerability in function filter_robert in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.

  • CVE-2021-38094Sep 20, 2021
    risk 0.00cvss epss 0.01

    Integer Overflow vulnerability in function filter_sobel in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.

  • CVE-2021-38092Sep 20, 2021
    risk 0.00cvss epss 0.01

    Integer Overflow vulnerability in function filter_prewitt in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.

  • CVE-2021-38091Sep 20, 2021
    risk 0.00cvss epss 0.01

    Integer Overflow vulnerability in function filter16_sobel in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.

  • CVE-2021-38090Sep 20, 2021
    risk 0.00cvss epss 0.01

    Integer Overflow vulnerability in function filter16_roberts in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.

  • CVE-2020-20902Sep 20, 2021
    risk 0.00cvss epss 0.01

    A CWE-125: Out-of-bounds read vulnerability exists in long_term_filter function in g729postfilter.c in FFmpeg 4.2.1 during computation of the denominator of pseudo-normalized correlation R'(0), that could result in disclosure of information.

  • CVE-2020-20898Sep 20, 2021
    risk 0.00cvss epss 0.01

    Integer Overflow vulnerability in function filter16_prewitt in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.

  • CVE-2020-20896Sep 20, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in function latm_write_packet in libavformat/latmenc.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a Null pointer dereference.

  • CVE-2020-20892Sep 20, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in function filter_frame in libavfilter/vf_lenscorrection.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a division by zero.

  • CVE-2020-20891Sep 20, 2021
    risk 0.00cvss epss 0.01

    Buffer Overflow vulnerability in function config_input in libavfilter/vf_gblur.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.

  • CVE-2021-38171Aug 21, 2021
    risk 0.00cvss epss 0.02

    adts_decode_extradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the init_get_bits return value, which is a necessary step because the second argument to init_get_bits can be crafted.

  • CVE-2021-38291Aug 12, 2021
    risk 0.00cvss epss 0.03

    FFmpeg version (git commit de8e6e67e7523e48bb27ac224a0b446df05e1640) suffers from a an assertion failure at src/libavutil/mathematics.c.

  • CVE-2020-21688Aug 10, 2021
    risk 0.00cvss epss 0.02

    A heap-use-after-free in the av_freep function in libavutil/mem.c of FFmpeg 4.2 allows attackers to execute arbitrary code.

  • CVE-2020-21697Aug 10, 2021
    risk 0.00cvss epss 0.01

    A heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service (DOS) via a crafted avi file.

  • CVE-2021-3566Aug 5, 2021
    risk 0.00cvss epss 0.01

    Prior to ffmpeg version 4.3, the tty demuxer did not have a 'read_probe' function assigned to it. By crafting a legitimate "ffconcat" file that references an image, followed by a file the triggers the tty demuxer, the contents of the second file will be copied into the output…

  • CVE-2021-38114Aug 4, 2021
    risk 0.00cvss epss 0.01

    libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868.

  • CVE-2021-33815Jun 3, 2021
    risk 0.00cvss epss 0.01

    dwa_uncompress in libavcodec/exr.c in FFmpeg 4.4 allows an out-of-bounds array access because dc_count is not strictly checked.

  • CVE-2020-22056Jun 2, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the config_input function in af_acrossover.c.

  • CVE-2020-22054Jun 2, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c.

  • CVE-2020-22051Jun 2, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the filter_frame function in vf_tile.c.

  • CVE-2020-22049Jun 2, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c.

  • CVE-2020-22048Jun 2, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c.

  • CVE-2020-22046Jun 2, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c.

  • CVE-2020-22044Jun 1, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the url_open_dyn_buf_internal function in libavformat/aviobuf.c.

  • CVE-2020-22043Jun 1, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak at the fifo_alloc_common function in libavutil/fifo.c.

  • CVE-2020-22042Jun 1, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak is affected by: memory leak in the link_filter_inouts function in libavfilter/graphparser.c.

  • CVE-2020-22041Jun 1, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_buffersrc_add_frame_flags function in buffersrc.

  • CVE-2020-22039Jun 1, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the inavi_add_ientry function.

  • CVE-2020-22038Jun 1, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_v4l2_m2m_create_context function in v4l2_m2m.c.

  • CVE-2020-22037Jun 1, 2021
    risk 0.00cvss epss 0.02

    A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in avcodec_alloc_context3 at options.c.

  • CVE-2020-22040Jun 1, 2021
    risk 0.00cvss epss 0.01

    A Denial of Service vulnerability exists in FFmpeg 4.2 idue to a memory leak in the v_frame_alloc function in frame.c.

  • CVE-2020-22036Jun 1, 2021
    risk 0.00cvss epss 0.02

    A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 in filter_intra at libavfilter/vf_bwdif.c, which might lead to memory corruption and other potential consequences.

  • CVE-2020-22035Jun 1, 2021
    risk 0.00cvss epss 0.01

    A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 in get_block_row at libavfilter/vf_bm3d.c, which might lead to memory corruption and other potential consequences.

  • CVE-2020-22034May 27, 2021
    risk 0.00cvss epss 0.02

    A heap-based Buffer Overflow vulnerability exists FFmpeg 4.2 at libavfilter/vf_floodfill.c, which might lead to memory corruption and other potential consequences.

  • CVE-2020-22033May 27, 2021
    risk 0.00cvss epss 0.01

    A heap-based Buffer Overflow Vulnerability exists FFmpeg 4.2 at libavfilter/vf_vmafmotion.c in convolution_y_8bit, which could let a remote malicious user cause a Denial of Service.

  • CVE-2020-22032May 27, 2021
    risk 0.00cvss epss 0.02

    A heap-based Buffer Overflow vulnerability exists FFmpeg 4.2 at libavfilter/vf_edgedetect.c in gaussian_blur, which might lead to memory corruption and other potential consequences.

  • CVE-2020-22016May 27, 2021
    risk 0.00cvss epss 0.02

    A heap-based Buffer Overflow vulnerability in FFmpeg 4.2 at libavcodec/get_bits.h when writing .mov files, which might lead to memory corruption and other potential consequences.

  • CVE-2020-22017May 27, 2021
    risk 0.00cvss epss 0.01

    A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at ff_fill_rectangle in libavfilter/drawutils.c, which might lead to memory corruption and other potential consequences.

  • CVE-2020-22022May 27, 2021
    risk 0.00cvss epss 0.02

    A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 in filter_frame at libavfilter/vf_fieldorder.c, which might lead to memory corruption and other potential consequences.

  • CVE-2020-22023May 27, 2021
    risk 0.00cvss epss 0.01

    A heap-based Buffer Overflow vulnerabililty exists in FFmpeg 4.2 in filter_frame at libavfilter/vf_bitplanenoise.c, which might lead to memory corruption and other potential consequences.

  • CVE-2020-22025May 27, 2021
    risk 0.00cvss epss 0.02

    A heap-based Buffer Overflow vulnerability exists in gaussian_blur at libavfilter/vf_edgedetect.c, which might lead to memory corruption and other potential consequences.

  • CVE-2020-22027May 27, 2021
    risk 0.00cvss epss 0.02

    A heap-based Buffer Overflow vulnerability exits in FFmpeg 4.2 in deflate16 at libavfilter/vf_neighbor.c, which might lead to memory corruption and other potential consequences.

  • CVE-2020-22030May 27, 2021
    risk 0.00cvss epss 0.01

    A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at libavfilter/af_afade.c in crossfade_samples_fltp, which might lead to memory corruption and other potential consequences.

Page 5 of 11