CVE-2013-0860

The fferframeend function in libavcodec/errorresilience.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.1 does not properly verify that a frame is fully initialized, which allows remote attackers to trigger a NULL pointer dereference via crafted picture data...

CVE-2013-0861

The avcodecdecodeaudio4 function in libavcodec/utils.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.1 allows remote attackers to trigger memory corruption via vectors related to the channel layout...

CVE-2013-0868

libavcodec/huffyuvdec.c in FFmpeg before 1.1.2 allows remote attackers to have an unspecified impact via crafted Huffyuv data, related to an out-of-bounds write and 1 unchecked return codes from the initvlc function and 2 "len==0 cases."...

Design/Logic Flaw

libavcodec/huffyuvdec.c in FFmpeg before 1.1.2 allows remote attackers to have an unspecified impact via crafted Huffyuv data, related to an out-of-bounds write and 1 unchecked return codes from the initvlc function and 2 "len==0 cases."...

Out-of-bounds

The gifcopyimgrect function in libavcodec/gifdec.c in FFmpeg before 1.1.2 performs an incorrect calculation for an "end pointer," which allows remote attackers to have an unspecified impact via crafted GIF data that triggers an out-of-bounds array access...

CVE-2013-0864

CVE-2013-0864 affects FFmpeg prior to 1.1.2. The vulnerability is in libavcodec/gifdec.c:gif_copy_img_rect, where an incorrect calculation for the end pointer enables remote attackers to trigger an out-of-bounds array access via crafted GIF data, with unspecified impact. The issue is mitigated by...

CVE-2013-0863

CVE-2013-0863 : FFmpeg contains a buffer overflow in the rle_decode function (libavcodec/sanm.c) that affects FFmpeg releases before 1.0.4 and 1.1.x before 1.1.2 when processing crafted LucasArts Smush video data. The vulnerability could allow a remote attacker to cause arbitrary code execution o...

CVE-2013-0862

Multiple integer overflows in the processframeobj function in libavcodec/sanm.c in FFmpeg before 1.1.2 allow remote attackers to have an unspecified impact via crafted image dimensions in LucasArts Smush video data, which triggers an out-of-bounds array access...

CVE-2013-0864

The gifcopyimgrect function in libavcodec/gifdec.c in FFmpeg before 1.1.2 performs an incorrect calculation for an "end pointer," which allows remote attackers to have an unspecified impact via crafted GIF data that triggers an out-of-bounds array access...

CVE-2013-0861

The avcodecdecodeaudio4 function in libavcodec/utils.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.1 allows remote attackers to trigger memory corruption via vectors related to the channel layout...

CVE-2013-0864

The gifcopyimgrect function in libavcodec/gifdec.c in FFmpeg before 1.1.2 performs an incorrect calculation for an "end pointer," which allows remote attackers to have an unspecified impact via crafted GIF data that triggers an out-of-bounds array access...

CVE-2013-0865

CVE-2013-0865 affects FFmpeg/libav: the vqa_decode_chunk function in libavcodec/vqavideo.c allows an out-of-bounds write through large cbp0 or cbpz chunks in Westwood VQA video files. The issue is fixed in FFmpeg releases >= 1.0.4 and >= 1.1.2. Remediation is to upgrade FFmpeg/libav to a ve...

CVE-2013-0862

CVE-2013-0862 affects FFmpeg (libavcodec/sanm.c: process_frame_obj). The vulnerability is due to multiple integer overflows that can cause an out-of-bounds access when processing LucasArts Smush image data, leading to potential arbitrary impact on confidentiality, integrity, and availability. Aff...

CVE-2013-0861

The CVE-2013-0861 vulnerability affects FFmpeg’s avcodec_decode_audio4 function (libavcodec/utils.c) and allows remote triggers of memory corruption through channel layout vectors. Affected versions are FFmpeg before 1.0.4 and 1.1.x before 1.1.1. Documents consistently describe this as a remote-c...

DEBIAN-CVE-2013-0873

The readheader function in libavcodec/shorten.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via an invalid channel count, related to "freeing invalid addresses."...

CVE-2013-4264

The kempfdecodetile function in libavcodec/g2meet.c in FFmpeg before 2.0.1 allows remote attackers to cause a denial of service out-of-bounds heap write via a G2M4 encoded file...

Heap overflow

The kempfdecodetile function in libavcodec/g2meet.c in FFmpeg before 2.0.1 allows remote attackers to cause a denial of service out-of-bounds heap write via a G2M4 encoded file...

CVE-2013-0874

The 1 doubles2str and 2 shorts2str functions in libavcodec/tiff.c in FFmpeg before 1.1.3 allow remote attackers to have an unspecified impact via a crafted TIFF image, related to an out-of-bounds array access...

Design/Logic Flaw

The readheader function in libavcodec/shorten.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via an invalid channel count, related to "freeing invalid addresses."...

CVE-2013-0873

The readheader function in libavcodec/shorten.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via an invalid channel count, related to "freeing invalid addresses."...