Search CVE reports
251 – 260 of 332 results
The process_frame_obj function in sanm.c in libavcodec in FFmpeg before 1.2.1 does not validate width and height values, which allows remote attackers to cause a denial of service (integer overflow, out-of-bounds array access, and...
4 affected packages
libav, ffmpeg, ffmpeg-extra, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libav | — | — | — | — |
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav-extra | — | — | — | — |
The cdg_decode_frame function in cdgraphics.c in libavcodec in FFmpeg before 1.2.1 does not validate the presence of non-header data in a buffer, which allows remote attackers to cause a denial of service (out-of-bounds array...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
The gif_decode_frame function in gifdec.c in libavcodec in FFmpeg before 1.2.1 does not properly manage the disposal methods of frames, which allows remote attackers to cause a denial of service (out-of-bounds array access and...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
The mm_decode_inter function in mmvideo.c in libavcodec in FFmpeg before 1.2.1 does not validate the relationship between a horizontal coordinate and a width value, which allows remote attackers to cause a denial of service...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
The format_line function in log.c in libavutil in FFmpeg before 1.2.1 uses inapplicable offset data during a certain category calculation, which allows remote attackers to cause a denial of service (invalid pointer dereference and...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
The rle_unpack function in vmdav.c in libavcodec in FFmpeg git 20130328 through 20130501 does not properly use the bytestream2 API, which allows remote attackers to cause a denial of service (out-of-bounds array access and...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
Some fixes available 4 of 9
The msrle_decode_8_16_24_32 function in msrledec.c in libavcodec in FFmpeg through 1.1.3 does not properly determine certain end pointers, which allows remote attackers to cause a denial of service (out-of-bounds array access and...
4 affected packages
libav, ffmpeg, ffmpeg-extra, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libav | — | — | — | — |
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav-extra | — | — | — | — |
Some fixes available 4 of 9
The iff_read_header function in iff.c in libavformat in FFmpeg through 1.1.3 does not properly handle data sizes for Interchange File Format (IFF) data during operations involving a CMAP chunk or a video codec, which allows remote...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
The avcodec_decode_audio4 function in utils.c in libavcodec in FFmpeg before 1.1.3 does not verify the decoding state before proceeding with certain skip operations, which allows remote attackers to cause a denial of service...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
Some fixes available 4 of 9
The ff_h264_decode_seq_parameter_set function in h264_ps.c in libavcodec in FFmpeg before 1.1.3 does not validate the relationship between luma depth and chroma depth, which allows remote attackers to cause a denial of service...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |