Ffmpeg

ffmpeg

Vendor: Ffmpeg • 480 CVEs

CVEs (480)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2011-3949 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 9, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The dirac_unpack_idwt_params function in libavcodec/diracdec.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Dirac data.
CVE-2011-3946 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 9, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The ff_h264_decode_sei function in libavcodec/h264_sei.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Supplemental enhancement information (SEI) data, which triggers an infinite...Show more The ff_h264_decode_sei function in libavcodec/h264_sei.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Supplemental enhancement information (SEI) data, which triggers an infinite loop.Show less
CVE-2011-3944 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 9, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The smacker_decode_header_tree function in libavcodec/smacker.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Smacker data.
CVE-2011-3941 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 9, 2013 N/A· v4 N/A· v3 7.5 HIGH· v2 The decode_mb function in libavcodec/error_resilience.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via vectors related to an uninitialized block index, which triggers an out-of-bounds wri...Show more The decode_mb function in libavcodec/error_resilience.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via vectors related to an uninitialized block index, which triggers an out-of-bounds write.Show less
CVE-2011-3935 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 9, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The codec_get_buffer function in ffmpeg.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via vectors related to a crafted image size.
CVE-2011-3934 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 9, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Double free vulnerability in the vp3_update_thread_context function in libavcodec/vp3.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted vp3 data.
CVE-2013-0859 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 The add_doubles_metadata function in libavcodec/tiff.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a negative or zero count value in a TIFF image, which triggers an out-of-bounds array...Show more The add_doubles_metadata function in libavcodec/tiff.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a negative or zero count value in a TIFF image, which triggers an out-of-bounds array access.Show less
CVE-2013-0858 2Debian Ffmpeg 2Debian Linux Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 The atrac3_decode_init function in libavcodec/atrac3.c in FFmpeg before 1.0.4 allows remote attackers to have an unspecified impact via ATRAC3 data with the joint stereo coding mode set and fewer than two channels.
CVE-2013-0857 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 The decode_frame_ilbm function in libavcodec/iff.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a crafted height value in IFF PBM/ILBM bitmap data.
CVE-2013-0856 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 The lpc_prediction function in libavcodec/alac.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted Apple Lossless Audio Codec (ALAC) data, related to a large nb_samples value.
CVE-2013-0855 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 Integer overflow in the alac_decode_close function in libavcodec/alac.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a large number of samples per frame in Apple Lossless Audio Codec (AL...Show more Integer overflow in the alac_decode_close function in libavcodec/alac.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a large number of samples per frame in Apple Lossless Audio Codec (ALAC) data, which triggers an out-of-bounds array access.Show less
CVE-2013-0854 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 The mjpeg_decode_scan_progressive_ac function in libavcodec/mjpegdec.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted MJPEG data.
CVE-2013-0853 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 The wavpack_decode_frame function in libavcodec/wavpack.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted WavPack data, which triggers an out-of-bounds array access, possibly due to...Show more The wavpack_decode_frame function in libavcodec/wavpack.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted WavPack data, which triggers an out-of-bounds array access, possibly due to an off-by-one error.Show less
CVE-2013-0852 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 The parse_picture_segment function in libavcodec/pgssubdec.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted RLE data, which triggers an out-of-bounds array access.
CVE-2013-0851 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 The decode_frame function in libavcodec/eamad.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted Electronic Arts Madcow video data, which triggers an out-of-bounds array access.
CVE-2013-0850 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 The decode_slice_header function in libavcodec/h264.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted H.264 data, which triggers an out-of-bounds array access.
CVE-2013-0849 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 The roq_decode_init function in libavcodec/roqvideodec.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a crafted (1) width or (2) height dimension that is not a multiple of sixteen in id...Show more The roq_decode_init function in libavcodec/roqvideodec.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a crafted (1) width or (2) height dimension that is not a multiple of sixteen in id RoQ video data.Show less
CVE-2013-0848 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 The decode_init function in libavcodec/huffyuv.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a crafted width in huffyuv data with the predictor set to median and the colorspace set to Y...Show more The decode_init function in libavcodec/huffyuv.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a crafted width in huffyuv data with the predictor set to median and the colorspace set to YUV422P, which triggers an out-of-bounds array access.Show less
CVE-2013-0847 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 The ff_id3v2_parse function in libavformat/id3v2.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via ID3v2 header data, which triggers an out-of-bounds array access.
CVE-2013-0846 1Ffmpeg 1Ffmpeg Apr 29, 2026 Dec 7, 2013 N/A· v4 N/A· v3 9.3 HIGH· v2 Array index error in the qdm2_decode_super_block function in libavcodec/qdm2.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted QDM2 data, which triggers an out-of-bounds array acces...Show more Array index error in the qdm2_decode_super_block function in libavcodec/qdm2.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted QDM2 data, which triggers an out-of-bounds array access.Show less

Previous 1...171819...24 Next