CVEs (480)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
Buffer Overflow vulnerability in FFmpeg 4.2 at the lagfun_frame16 function in libavfilter/vf_lagfun.c, which could let a remote malicious user cause Denial of Service. |
2Debian Ffmpeg2Debian Linux FfmpegNov 21, 2024 May 26, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Buffer Overflow vulnerability in FFmpeg 4.2 at filter_edges function in libavfilter/vf_yadif.c, which could let a remote malicious user cause a Denial of Service. |
2Debian Ffmpeg2Debian Linux FfmpegNov 21, 2024 May 26, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Buffer Overflow vulnerability in FFmpeg 4.2 in the build_diff_map function in libavfilter/vf_fieldmatch.c, which could let a remote malicious user cause a Denial of Service. |
2Debian Ffmpeg2Debian Linux FfmpegNov 21, 2024 May 26, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Buffer Overflow vulnerability in FFmpeg 4.2 at convolution_y_10bit in libavfilter/vf_vmafmotion.c, which could let a remote malicious user cause a Denial of Service. |
2Debian Ffmpeg2Debian Linux FfmpegNov 21, 2024 May 26, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Buffer Overflow vulnerability in FFmpeg 4.2 in mov_write_video_tag due to the out of bounds in libavformat/movenc.c, which could let a remote malicious user obtain sensitive information, cause a Denial of Service, or exe...Show more |
Buffer Overflow vulnerability in FFMpeg 4.2.3 in dnn_execute_layer_pad in libavfilter/dnn/dnn_backend_native_layer_pad.c due to a call to memcpy without length checks, which could let a remote malicious user execute arbi...Show more |
2Debian Ffmpeg2Debian Linux FfmpegNov 21, 2024 May 25, 2021 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aaccoder, which allows a remote malicious user to cause a Denial of Service |
2Debian Ffmpeg2Debian Linux FfmpegNov 21, 2024 May 25, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Denial of Service issue in FFmpeg 4.2 due to resource management errors via fftools/cmdutils.c. |
2Debian Ffmpeg2Debian Linux FfmpegNov 21, 2024 May 25, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 FFmpeg 4.2 is affected by null pointer dereference passed as argument to libavformat/aviobuf.c, which could cause a Denial of Service. |
FFmpeg 4.1.3 is affected by a Divide By Zero issue via libavcodec/ratecontrol.c, which allows a remote malicious user to cause a Denial of Service. |
2Debian Ffmpeg2Debian Linux FfmpegNov 21, 2024 May 25, 2021 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aacpsy.c, which allows a remote malicious user to cause a Denial of Service. |
2Debian Ffmpeg2Debian Linux FfmpegNov 21, 2024 May 25, 2021 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/lpc.h, which allows a remote malicious user to cause a Denial of Service. |
2Debian Ffmpeg2Debian Linux FfmpegNov 21, 2024 May 24, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Buffer Overflow vulnerability exists in FFmpeg 4.1 via apng_do_inverse_blend in libavcodec/pngenc.c, which could let a remote malicious user cause a Denial of Service |
FFmpeg <=4.3 contains a buffer overflow vulnerability in libavcodec through a crafted file that may lead to remote code execution. |
Buffer overflow vulnerability in sniff_channel_order function in aacdec_template.c in ffmpeg 3.1.2, allows attackers to execute arbitrary code (local). |
2Debian Ffmpeg2Debian Linux FfmpegNov 21, 2024 Jan 4, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 decode_frame in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations. |
track_header in libavformat/vividas.c in FFmpeg 4.3.1 has an out-of-bounds write because of incorrect extradata packing. |
FFmpeg through 4.3 has a heap-based buffer overflow in avio_get_str in libavformat/aviobuf.c because dnn_backend_native.c calls ff_dnn_load_model_native and a certain index check is omitted. |
3Canonical DebianFfmpeg3Debian Linux FfmpegUbuntu LinuxNov 21, 2024 Jun 7, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 FFmpeg 2.8 and 4.2.3 has a use-after-free via a crafted EXTINF duration in an m3u8 file because parse_playlist in libavformat/hls.c frees a pointer, and later that pointer is accessed in av_probe_input_format3 in libavfo...Show more |
3Canonical DebianFfmpeg3Debian Linux FfmpegUbuntu LinuxNov 21, 2024 Apr 28, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 cbs_jpeg_split_fragment in libavcodec/cbs_jpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEG_MARKER_SOS handling because of a missing length check. |