CVE-2014-8546

Published: Nov 5, 2014Modified: May 6, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Integer underflow in libavcodec/cinepak.c in FFmpeg before 2.4.2 allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted Cinepak video data.

Affected (105)

Products: Ffmpeg: Ffmpeg

Ffmpeg

1 product

Ffmpeg

Configuration A

105 vulnerable

Vulnerable Software	Affected Versions
Ffmpeg Ffmpeg	Up to 2.4.1
Ffmpeg Ffmpeg	Version 0.10.3
Ffmpeg Ffmpeg	Version 0.10.4
Ffmpeg Ffmpeg	Version 0.10
Ffmpeg Ffmpeg	Version 0.11.1
Ffmpeg Ffmpeg	Version 0.11.2
Ffmpeg Ffmpeg	Version 0.11.3
Ffmpeg Ffmpeg	Version 0.11.4
Ffmpeg Ffmpeg	Version 0.11
Ffmpeg Ffmpeg	Version 0.3.1
Ffmpeg Ffmpeg	Version 0.3.2
Ffmpeg Ffmpeg	Version 0.3.3
Ffmpeg Ffmpeg	Version 0.3.4
Ffmpeg Ffmpeg	Version 0.3
Ffmpeg Ffmpeg	Version 0.4.0
Ffmpeg Ffmpeg	Version 0.4.2
Ffmpeg Ffmpeg	Version 0.4.3
Ffmpeg Ffmpeg	Version 0.4.4
Ffmpeg Ffmpeg	Version 0.4.5
Ffmpeg Ffmpeg	Version 0.4.6
Ffmpeg Ffmpeg	Version 0.4.7
Ffmpeg Ffmpeg	Version 0.4.8
Ffmpeg Ffmpeg	Version 0.4.9 pre1
Ffmpeg Ffmpeg	Version 0.5.1
Ffmpeg Ffmpeg	Version 0.5.2
Ffmpeg Ffmpeg	Version 0.5.3
Ffmpeg Ffmpeg	Version 0.5.4.5
Ffmpeg Ffmpeg	Version 0.5.4.6
Ffmpeg Ffmpeg	Version 0.5.4
Ffmpeg Ffmpeg	Version 0.5.5
Ffmpeg Ffmpeg	Version 0.5
Ffmpeg Ffmpeg	Version 0.6.1
Ffmpeg Ffmpeg	Version 0.6.2
Ffmpeg Ffmpeg	Version 0.6.3
Ffmpeg Ffmpeg	Version 0.6
Ffmpeg Ffmpeg	Version 0.7.11
Ffmpeg Ffmpeg	Version 0.7.12
Ffmpeg Ffmpeg	Version 0.7.1
Ffmpeg Ffmpeg	Version 0.7.2
Ffmpeg Ffmpeg	Version 0.7.3
Ffmpeg Ffmpeg	Version 0.7.4
Ffmpeg Ffmpeg	Version 0.7.5
Ffmpeg Ffmpeg	Version 0.7.6
Ffmpeg Ffmpeg	Version 0.7.7
Ffmpeg Ffmpeg	Version 0.7.8
Ffmpeg Ffmpeg	Version 0.7.9
Ffmpeg Ffmpeg	Version 0.7
Ffmpeg Ffmpeg	Version 0.8.0
Ffmpeg Ffmpeg	Version 0.8.10
Ffmpeg Ffmpeg	Version 0.8.11
Ffmpeg Ffmpeg	Version 0.8.1
Ffmpeg Ffmpeg	Version 0.8.2
Ffmpeg Ffmpeg	Version 0.8.5.3
Ffmpeg Ffmpeg	Version 0.8.5.4
Ffmpeg Ffmpeg	Version 0.8.5
Ffmpeg Ffmpeg	Version 0.8.6
Ffmpeg Ffmpeg	Version 0.8.7
Ffmpeg Ffmpeg	Version 0.8.8
Ffmpeg Ffmpeg	Version 0.9.1
Ffmpeg Ffmpeg	Version 0.9
Ffmpeg Ffmpeg	Version 1.0.1
Ffmpeg Ffmpeg	Version 1.0.2
Ffmpeg Ffmpeg	Version 1.0.3
Ffmpeg Ffmpeg	Version 1.0.4
Ffmpeg Ffmpeg	Version 1.0
Ffmpeg Ffmpeg	Version 1.1.10
Ffmpeg Ffmpeg	Version 1.1.11
Ffmpeg Ffmpeg	Version 1.1.12
Ffmpeg Ffmpeg	Version 1.1.13
Ffmpeg Ffmpeg	Version 1.1.1
Ffmpeg Ffmpeg	Version 1.1.2
Ffmpeg Ffmpeg	Version 1.1.3
Ffmpeg Ffmpeg	Version 1.1.4
Ffmpeg Ffmpeg	Version 1.1.5
Ffmpeg Ffmpeg	Version 1.1.6
Ffmpeg Ffmpeg	Version 1.1.7
Ffmpeg Ffmpeg	Version 1.1.8
Ffmpeg Ffmpeg	Version 1.1.9
Ffmpeg Ffmpeg	Version 1.1
Ffmpeg Ffmpeg	Version 1.2.1
Ffmpeg Ffmpeg	Version 1.2.3
Ffmpeg Ffmpeg	Version 1.2.4
Ffmpeg Ffmpeg	Version 1.2.5
Ffmpeg Ffmpeg	Version 1.2.6
Ffmpeg Ffmpeg	Version 1.2.7
Ffmpeg Ffmpeg	Version 1.2
Ffmpeg Ffmpeg	Version 2.0.1
Ffmpeg Ffmpeg	Version 2.0.2
Ffmpeg Ffmpeg	Version 2.0.3
Ffmpeg Ffmpeg	Version 2.0.4
Ffmpeg Ffmpeg	Version 2.0.5
Ffmpeg Ffmpeg	Version 2.0
Ffmpeg Ffmpeg	Version 2.1.1
Ffmpeg Ffmpeg	Version 2.1.2
Ffmpeg Ffmpeg	Version 2.1.3
Ffmpeg Ffmpeg	Version 2.1.4
Ffmpeg Ffmpeg	Version 2.1.5
Ffmpeg Ffmpeg	Version 2.1
Ffmpeg Ffmpeg	Version 2.2.4
Ffmpeg Ffmpeg	Version 2.2
Ffmpeg Ffmpeg	Version 2.3.2
Ffmpeg Ffmpeg	Version 2.3.3
Ffmpeg Ffmpeg	Version 2.3.4
Ffmpeg Ffmpeg	Version 2.3
Ffmpeg Ffmpeg	Version 2.4

Related CWEs

CWE-189

References (6)

http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=e7e5114c506957f40aafd794e06de1a7e341e9d5

Source: cve@mitre.org

http://www.ffmpeg.org/security.html

Source: cve@mitre.org

https://security.gentoo.org/glsa/201603-06

Source: cve@mitre.org

http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=e7e5114c506957f40aafd794e06de1a7e341e9d5

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ffmpeg.org/security.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/201603-06

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.