1143 matches found
CVE-2020-35965
decodeframe in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations...
Out-of-bounds
decodeframe in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations...
CVE-2020-35965
decodeframe in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations...
CVE-2020-35965
CVE-2020-35965 affects FFmpeg 4.3.1’s libavcodec/exr.c, where decode_frame can write out of bounds due to faulty calculations of when to perform memset zero operations. This is a memory corruption risk described across multiple advisories tied to FFmpeg vulnerabilities. From the connected documen...
CVE-2020-35965
decodeframe in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations...
PT-2020-6180 · FFmpeg +5 · Ffmpeg +5
Name of the Vulnerable Software and Affected Versions: FFmpeg version 4.3.1 Description: The issue is related to the decode frame function in the libavcodec/exr.c component, which has an out-of-bounds write due to errors in calculations. This can be exploited by a remote attacker to cause a denia...
Buffer Overflows
cbsjpegsplitfragment in libavcodec/cbsjpeg.c in FFmpeg 4.2.2 has a heap-based buffer overflow during JPEGMARKERSOS handling because of a missing length check...
Denial Of Service (DoS)
FFmpeg is vulnerable to Denial Of Service DoS. The avcodecopen2 in libavcodec/utils.c allows a NULL pointer dereference and possibly unspecified other impact when there is no valid close function pointer...
Denial Of Service (DoS)
FFmpeg is vulnerable to denial of service. An attacker is able to hog the CPU via a malicious video file in Matroska format as the handleopenbrace function in libavcodec/htmlsubtitles.c has a complex format argument to sscanf...
Denial Of Service (DoS)
ffmpeg is vulnerable to denial of service. An attacker is able to cause excessive CPU consumption via a malicious video file in Matroska format as the ffhtmlmarkuptoass in libavcodec/htmlsubtitles.c has a complex format argument to sscanf...
Denial Of Service (DoS)
ffmpeg is vulnerable to denial of service. The decodeinit function in libavcodec/utvideodec.c allows remote attackers to cause a denial of service via a malicious AVI file...
Arbitrary Code Execution
ffmpeg is vulnerable to arbitrary code execution. The vulnerability exists as the avcolorprimariesname function in libavutil/pixdesc.c in FFmpeg 3.3.3 may return a NULL pointer depending on a value contained in a file, but callers do not anticipate this, as demonstrated by the avcodecstring...
CVE-2020-12284
cbsjpegsplitfragment in libavcodec/cbsjpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEGMARKERSOS handling because of a missing length check...
CVE-2020-12284
cbsjpegsplitfragment in libavcodec/cbsjpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEGMARKERSOS handling because of a missing length check...
CVE-2020-12284
FFmpeg contains a heap-based buffer overflow in libavcodec/cbs_jpeg.c (cbs_jpeg_split_fragment) in versions 4.1 and 4.2.2, triggered during JPEG_MARKER_SOS processing due to a missing length check. This could lead to memory corruption. Several advisories reference CVE-2020-12284; fixes were issue...
The vulnerability of the `avcodec_default_get_buffer` function in `utils.c` of the Libavcodec library, which is part of the multimedia libraries of Ffmpeg, allows a hacker to execute arbitrary code.
The vulnerability of the avcodecdefaultgetbuffer function in the utils.c file of the Libavcodec library, which is part of the multimedia libraries of Ffmpeg, is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a...
CVE-2019-17542
FFmpeg before 4.2 has a heap-based buffer overflow in vqadecodechunk because of an out-of-array access in vqadecodeinit in libavcodec/vqavideo.c...
CVE-2019-17542
FFmpeg before 4.2 has a heap-based buffer overflow in vqadecodechunk because of an out-of-array access in vqadecodeinit in libavcodec/vqavideo.c...
CVE-2019-17542
FFmpeg before 4.2 has a heap-based buffer overflow in vqadecodechunk because of an out-of-array access in vqadecodeinit in libavcodec/vqavideo.c...
Null pointer dereference
In FFmpeg before 4.2, avcodecopen2 in libavcodec/utils.c allows a NULL pointer dereference and possibly unspecified other impact when there is no valid close function pointer...