1143 matches found
Integer overflow
The processframeobj function in sanm.c in libavcodec in FFmpeg before 1.2.1 does not validate width and height values, which allows remote attackers to cause a denial of service integer overflow, out-of-bounds array access, and application crash via crafted LucasArts Smush video data...
Out-of-bounds
The gifdecodeframe function in gifdec.c in libavcodec in FFmpeg before 1.2.1 does not properly manage the disposal methods of frames, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash via crafted GIF data...
CVE-2013-3674
The cdgdecodeframe function in cdgraphics.c in libavcodec in FFmpeg before 1.2.1 does not validate the presence of non-header data in a buffer, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash via crafted CD Graphics Video data...
CVE-2013-3670
CVE-2013-3670 affects FFmpeg’s libavcodec: the rle_unpack function in vmdav.c (FFmpeg git 20130328 through 20130501) does not properly use the bytestream2 API, enabling a remote attacker to trigger a denial of service via crafted RLE data (out-of-bounds array access leading to an application cras...
CVE-2013-3675
The processframeobj function in sanm.c in libavcodec in FFmpeg before 1.2.1 does not validate width and height values, which allows remote attackers to cause a denial of service integer overflow, out-of-bounds array access, and application crash via crafted LucasArts Smush video data...
CVE-2013-3672
CVE-2013-3672 concerns FFmpeg’s libavcodec/mmvideo.c:mm_decode_inter, where the code fails to validate the relationship between a horizontal coordinate and a width, enabling a remote attacker to trigger an out-of-bounds access and cause a crash (Denial of Service). It affects FFmpeg/libavcodec pr...
CVE-2013-3675
FFmpeg libavcodec, specifically the process_frame_obj in sanm.c, is vulnerable to a denial-of-service due to unvalidated width/height values when parsing LucasArts Smush data (FFmpeg before 1.2.1). The root cause is an integer overflow and out-of-bounds array access that can crash the application...
CVE-2013-3674
FFmpeg/libavcodec is affected by CVE-2013-3674. The cdg_decode_frame function in cdgraphics.c does not validate the presence of non-header data in the input buffer, enabling a remote attacker to trigger an out-of-bounds access and cause an application crash (denial of service) when processing CD ...
CVE-2013-3674
The cdgdecodeframe function in cdgraphics.c in libavcodec in FFmpeg before 1.2.1 does not validate the presence of non-header data in a buffer, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash via crafted CD Graphics Video data...
CVE-2013-3673
CVE-2013-3673 : In FFmpeg, the gif_decode_frame function in gifdec.c (libavcodec) before 1.2.1 does not properly manage frame disposal methods, allowing remote attackers to cause a denial of service via crafted GIF data (out-of-bounds access and crash). Affected component: FFmpeg/libavcodec. Root...
CVE-2013-3670
The rleunpack function in vmdav.c in libavcodec in FFmpeg git 20130328 through 20130501 does not properly use the bytestream2 API, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash via crafted RLE data. NOTE: the vendor has listed this as ...
CVE-2013-3673
The gifdecodeframe function in gifdec.c in libavcodec in FFmpeg before 1.2.1 does not properly manage the disposal methods of frames, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash via crafted GIF data...
CVE-2013-2496
The msrledecode8162432 function in msrledec.c in libavcodec in FFmpeg through 1.1.3 does not properly determine certain end pointers, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have unspecified other impact via crafted...
DEBIAN-CVE-2013-2496
The msrledecode8162432 function in msrledec.c in libavcodec in FFmpeg through 1.1.3 does not properly determine certain end pointers, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have unspecified other impact via crafted...
Out-of-bounds
The msrledecode8162432 function in msrledec.c in libavcodec in FFmpeg through 1.1.3 does not properly determine certain end pointers, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have unspecified other impact via crafted...
CVE-2013-2496
The msrledecode8162432 function in msrledec.c in libavcodec in FFmpeg through 1.1.3 does not properly determine certain end pointers, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have unspecified other impact via crafted...
CVE-2013-2496
The msrledecode8162432 function in msrledec.c in libavcodec in FFmpeg through 1.1.3 does not properly determine certain end pointers, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have unspecified other impact via crafted...
CVE-2013-2276
The avcodecdecodeaudio4 function in utils.c in libavcodec in FFmpeg before 1.1.3 does not verify the decoding state before proceeding with certain skip operations, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have...
Out-of-bounds
The avcodecdecodeaudio4 function in utils.c in libavcodec in FFmpeg before 1.1.3 does not verify the decoding state before proceeding with certain skip operations, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have...
CVE-2013-2276
The avcodecdecodeaudio4 function in utils.c in libavcodec in FFmpeg before 1.1.3 does not verify the decoding state before proceeding with certain skip operations, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have...