Ffmpeg

ffmpeg

Vendor: Ffmpeg • 480 CVEs

CVEs (480)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-20896 1Ffmpeg 1Ffmpeg Nov 21, 2024 Sep 20, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An issue was discovered in function latm_write_packet in libavformat/latmenc.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a Null pointer dereference.
CVE-2020-20892 1Ffmpeg 1Ffmpeg Nov 21, 2024 Sep 20, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An issue was discovered in function filter_frame in libavfilter/vf_lenscorrection.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a division by zero.
CVE-2020-20891 1Ffmpeg 1Ffmpeg Nov 21, 2024 Sep 20, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Buffer Overflow vulnerability in function config_input in libavfilter/vf_gblur.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.
CVE-2021-38171 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Aug 21, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 adts_decode_extradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the init_get_bits return value, which is a necessary step because the second argument to init_get_bits can be crafted.
CVE-2021-38291 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Aug 12, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 FFmpeg version (git commit de8e6e67e7523e48bb27ac224a0b446df05e1640) suffers from a an assertion failure at src/libavutil/mathematics.c.
CVE-2020-21697 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Aug 10, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service (DOS) via a crafted avi file.
CVE-2020-21688 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Aug 10, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 A heap-use-after-free in the av_freep function in libavutil/mem.c of FFmpeg 4.2 allows attackers to execute arbitrary code.
CVE-2021-3566 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Aug 5, 2021 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Prior to ffmpeg version 4.3, the tty demuxer did not have a 'read_probe' function assigned to it. By crafting a legitimate "ffconcat" file that references an image, followed by a file the triggers the tty demuxer, the co...Show more Prior to ffmpeg version 4.3, the tty demuxer did not have a 'read_probe' function assigned to it. By crafting a legitimate "ffconcat" file that references an image, followed by a file the triggers the tty demuxer, the contents of the second file will be copied into the output file verbatim (as long as the `-vcodec copy` option is passed to ffmpeg).Show less
CVE-2021-38114 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Aug 4, 2021 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868.
CVE-2021-33815 1Ffmpeg 1Ffmpeg Nov 21, 2024 Jun 3, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 dwa_uncompress in libavcodec/exr.c in FFmpeg 4.4 allows an out-of-bounds array access because dc_count is not strictly checked.
CVE-2020-22056 1Ffmpeg 1Ffmpeg Nov 21, 2024 Jun 2, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the config_input function in af_acrossover.c.
CVE-2020-22054 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Jun 2, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c.
CVE-2020-22051 1Ffmpeg 1Ffmpeg Nov 21, 2024 Jun 2, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the filter_frame function in vf_tile.c.
CVE-2020-22049 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Jun 2, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c.
CVE-2020-22048 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Jun 2, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c.
CVE-2020-22046 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Jun 2, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c.
CVE-2020-22044 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Jun 1, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the url_open_dyn_buf_internal function in libavformat/aviobuf.c.
CVE-2020-22043 1Ffmpeg 1Ffmpeg Nov 21, 2024 Jun 1, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak at the fifo_alloc_common function in libavutil/fifo.c.
CVE-2020-22042 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Jun 1, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak is affected by: memory leak in the link_filter_inouts function in libavfilter/graphparser.c.
CVE-2020-22041 2Debian Ffmpeg 2Debian Linux Ffmpeg Nov 21, 2024 Jun 1, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_buffersrc_add_frame_flags function in buffersrc.

Previous 1...567...24 Next