1143 matches found
CVE-2017-1000460
In line libavcodec/h264dec.c:500 in libavv13dev0, ffmpegn3.4, chromium56 prior Feb 13, 2017, the return value of initgetbits is ignored and getuegolomb&gb is called on an uninitialized getbits context, which causes a NULL deref exception...
CVE-2017-1000460
In line libavcodec/h264dec.c:500 in libavv13dev0, ffmpegn3.4, chromium56 prior Feb 13, 2017, the return value of initgetbits is ignored and getuegolomb&gb is called on an uninitialized getbits context, which causes a NULL deref exception...
CVE-2017-1000460
CVE-2017-1000460 affects libav (libavcodec/h264dec.c) and is described across multiple sources as a NULL dereference caused by calling get_ue_golomb(&gb) on an uninitialized get_bits context after ignoring the return value of init_get_bits in get_last_needed_nal() (libavformat/h264.c). The issue ...
CVE-2017-1000460
In line libavcodec/h264dec.c:500 in libavv13dev0, ffmpegn3.4, chromium56 prior Feb 13, 2017, the return value of initgetbits is ignored and getuegolomb&gb is called on an uninitialized getbits context, which causes a NULL deref exception...
Heap overflow
The fffreepicturetables function in libavcodec/mpegpicture.c in Libav 12.2 allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted file, related to vc1decodeiblocksadv...
CVE-2017-17129
The ffvc1mc4mvchroma4 function in libavcodec/vc1mc.c in Libav 12.2 allows remote attackers to cause a denial of service segmentation fault and application crash or possibly have unspecified other impact via a crafted file...
UBUNTU-CVE-2017-17128
The h264sliceinit function in libavcodec/h264slice.c in Libav 12.2 allows remote attackers to cause a denial of service segmentation fault and application crash via a crafted file...
CVE-2017-17127
CVE-2017-17127 affects Libav (vc1_decode_frame in libavcodec/vc1dec.c) and allows a remote attacker to trigger a denial of service via a crafted file, caused by a NULL pointer dereference in Libav 12.2. The impact is an application crash (availability impact). Connected advisories indicate the is...
DEBIAN-CVE-2017-17081
The gmcmmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly validate widths and heights, which allows remote attackers to cause a denial of service integer signedness error and out-of-array read via a crafted MPEG file...
Integer overflow
The gmcmmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly validate widths and heights, which allows remote attackers to cause a denial of service integer signedness error and out-of-array read via a crafted MPEG file...
UBUNTU-CVE-2017-17081
The gmcmmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly validate widths and heights, which allows remote attackers to cause a denial of service integer signedness error and out-of-array read via a crafted MPEG file...
CVE-2017-17081
The gmcmmx function in libavcodec/x86/mpegvideodsp.c in FFmpeg 2.3 and 3.4 does not properly validate widths and heights, which allows remote attackers to cause a denial of service integer signedness error and out-of-array read via a crafted MPEG file...
CVE-2017-16840
The VC-2 Video Compression encoder in FFmpeg 3.0 and 3.4 allows remote attackers to cause a denial of service out-of-bounds read because of incorrect buffer padding for non-Haar wavelets, related to libavcodec/vc2enc.c and libavcodec/vc2encdwt.c...
Out-of-bounds
The VC-2 Video Compression encoder in FFmpeg 3.0 and 3.4 allows remote attackers to cause a denial of service out-of-bounds read because of incorrect buffer padding for non-Haar wavelets, related to libavcodec/vc2enc.c and libavcodec/vc2encdwt.c...
CVE-2017-16840
The VC-2 Video Compression encoder in FFmpeg 3.0 and 3.4 allows remote attackers to cause a denial of service out-of-bounds read because of incorrect buffer padding for non-Haar wavelets, related to libavcodec/vc2enc.c and libavcodec/vc2encdwt.c...
CVE-2017-16840
The VC-2 Video Compression encoder in FFmpeg 3.0 and 3.4 allows remote attackers to cause a denial of service out-of-bounds read because of incorrect buffer padding for non-Haar wavelets, related to libavcodec/vc2enc.c and libavcodec/vc2encdwt.c...
libbpg libavcodec 'restore_tqb_pixels' function denial of service vulnerability
libbpg is a new image format library. libavcodec is one of the general-purpose encoding/decoding libraries. A security vulnerability exists in the 'restoretqbpixels' function of the hevcfilter.c file of libavcodec used in libbpg version 0.9.7 and other products. A remote attacker could exploit th...
CVE-2017-14034
The restoretqbpixels function in hevcfilter.c in libavcodec, as used in libbpg 0.9.7 and other products, miscalculates a memcpy destination address, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly have unspecified other impa...
CVE-2017-14034
The restoretqbpixels function in hevcfilter.c in libavcodec, as used in libbpg 0.9.7 and other products, miscalculates a memcpy destination address, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly have unspecified other impa...
Heap overflow
The restoretqbpixels function in hevcfilter.c in libavcodec, as used in libbpg 0.9.7 and other products, miscalculates a memcpy destination address, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly have unspecified other impa...