CVE-2014-9317

The decodeihdrchunk function in libavcodec/pngdec.c in FFMpeg before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote attackers to cause a denial of service out-of-bounds heap access and possibly have other unspecified impact via an IDAT before an IHDR in a PNG file...

CVE-2014-9316

The mjpegdecodeapp function in libavcodec/mjpegdec.c in FFMpeg before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote attackers to cause a denial of service out-of-bounds heap access and possibly have other unspecified impact via vectors related to LJIF tags in an MJPEG file...

CVE-2014-9318

The rawdecode function in libavcodec/rawdec.c in FFMpeg before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote attackers to cause a denial of service out-of-bounds heap access and possibly have other unspecified impact via a crafted .cine file that triggers the avpicturegetsize...

CVE-2014-9316

The mjpegdecodeapp function in libavcodec/mjpegdec.c in FFMpeg before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote attackers to cause a denial of service out-of-bounds heap access and possibly have other unspecified impact via vectors related to LJIF tags in an MJPEG file...

CVE-2014-9319

The vulnerability CVE-2014-9319 affects FFmpeg’s libavcodec/hevc_ps.c (ff_hevc_decode_nal_sps). The function can trigger an out-of-bounds access leading to a denial of service when processing crafted .bit files. Affected branches include FFmpeg releases before 2.1.6, 2.2.x through 2.3.x, and 2.4....

CVE-2014-8548

Off-by-one error in libavcodec/smc.c in FFmpeg before 2.4.2 allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted Quicktime Graphics aka SMC video data...

DEBIAN-CVE-2014-8548

Off-by-one error in libavcodec/smc.c in FFmpeg before 2.4.2 allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted Quicktime Graphics aka SMC video data...

CVE-2014-8545

libavcodec/pngdec.c in FFmpeg before 2.4.2 accepts the monochrome-black format without verifying that the bits-per-pixel value is 1, which allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted PNG data...

DEBIAN-CVE-2014-8546

Integer underflow in libavcodec/cinepak.c in FFmpeg before 2.4.2 allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted Cinepak video data...

CVE-2014-8542

libavcodec/utils.c in FFmpeg before 2.4.2 omits a certain codec ID during enforcement of alignment, which allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted JV data...

Integer overflow

Integer underflow in libavcodec/cinepak.c in FFmpeg before 2.4.2 allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted Cinepak video data...

Out-of-bounds

libavcodec/tiff.c in FFmpeg before 2.4.2 does not properly validate bits-per-pixel fields, which allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted TIFF data...

Out-of-bounds

libavcodec/utils.c in FFmpeg before 2.4.2 omits a certain codec ID during enforcement of alignment, which allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted JV data...

Out-of-bounds

libavcodec/pngdec.c in FFmpeg before 2.4.2 accepts the monochrome-black format without verifying that the bits-per-pixel value is 1, which allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted PNG data...

Out-of-bounds

libavcodec/on2avc.c in FFmpeg before 2.4.2 does not constrain the number of channels to at most 2, which allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted On2 data...

Out-of-bounds

Off-by-one error in libavcodec/smc.c in FFmpeg before 2.4.2 allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted Quicktime Graphics aka SMC video data...

Out-of-bounds

libavcodec/gifdec.c in FFmpeg before 2.4.2 does not properly compute image heights, which allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted GIF data...

CVE-2014-8545

libavcodec/pngdec.c in FFmpeg before 2.4.2 accepts the monochrome-black format without verifying that the bits-per-pixel value is 1, which allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted PNG data...

CVE-2014-8545

CVE-2014-8545 concerns FFmpeg’s libavcodec/pngdec.c, where the code path accepts the monochrome-black format without validating that bits-per-pixel equals 1. This can trigger an out-of-bounds access in crafted PNG data, leading to a potential denial of service (and possibly other impact) as descr...

CVE-2014-8542

CVE-2014-8542 affects FFmpeg’s libavcodec/utils.c, where a codec ID was omitted during alignment enforcement, enabling a remote attacker to trigger a denial of service via crafted JV data (out-of-bounds access) and potentially other impacts. The initial description specifies FFmpeg prior to 2.4.2...