Search CVE reports
321 – 330 of 332 results
Some fixes available 1 of 2
cavsdec.c in libavcodec in FFmpeg before 0.7.4 and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (incorrect write operation and application crash) via an invalid bitstream in a Chinese AVS video (aka...
4 affected packages
libav, ffmpeg, ffmpeg-extra, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| libav | — | — | — | — |
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav-extra | — | — | — | — |
Some fixes available 7 of 8
The Matroska format decoder in FFmpeg before 0.8.3 does not properly allocate memory, which allows remote attackers to execute arbitrary code via a crafted file.
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
Some fixes available 7 of 8
Integer signedness error in the decode_residual_block function in cavsdec.c in libavcodec in FFmpeg before 0.7.3 and 0.8.x before 0.8.2, and libav through 0.7.1, allows remote attackers to cause a denial of service...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
Some fixes available 4 of 5
sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the bounds of...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandriva Linux 2009.0, 2010.0, and 2010.1; Corporate Server 4.0 (aka CS4.0); and Mandriva Enterprise Server 5 (aka...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
Some fixes available 2 of 4
The VC-1 decoding functionality in FFmpeg before 0.5.4, as used in MPlayer and other products, does not properly restrict read operations, which allows remote attackers to have an unspecified impact via a crafted VC-1 file, a...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
Some fixes available 4 of 6
The ape_read_header function in ape.c in libavformat in FFmpeg before 0.5.4, as used in MPlayer, VideoLAN VLC media player, and other products, allows remote attackers to cause a denial of service (application crash) via an APE...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
Some fixes available 4 of 7
The video functionality in Google Chrome before 10.0.648.127 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger use of a malformed "out-of-bounds structure."
3 affected packages
chromium-browser, ffmpeg, libav
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| chromium-browser | — | — | — | — |
| ffmpeg | — | — | — | — |
| libav | — | — | — | — |
Some fixes available 8 of 9
The OGG container implementation in Google Chrome before 10.0.648.127 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that trigger an out-of-bounds write.
5 affected packages
chromium-browser, ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| chromium-browser | — | — | — | — |
| ffmpeg | — | — | — | — |
| ffmpeg-extra | — | — | — | — |
| libav | — | — | — | — |
| libav-extra | — | — | — | — |
Some fixes available 4 of 5
FFmpeg 0.5.x, as used in MPlayer and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed VC-1 file.
2 affected packages
ffmpeg, libav
| Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|
| ffmpeg | — | — | — | — |
| libav | — | — | — | — |