983 matches found
CVE-2017-7206
The ffh2645extractrbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...
UBUNTU-CVE-2017-7208
The decoderesidual function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...
Heap overflow
The ffh2645extractrbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...
Design/Logic Flaw
The decoderesidual function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...
CVE-2017-7206
The ffh2645extractrbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...
CVE-2017-7208
The decoderesidual function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...
CVE-2017-7206
The ffh2645extractrbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...
CVE-2017-7208
CVE-2017-7208 affects the libav/libavcodec decoder. The vulnerability is in the decode_residual function of libavcodec in Libav 9.21, which could be exploited by a crafted H.264 video file to cause a denial-of-service via a buffer over-read and potentially leak memory. The Debian security advisor...
CVE-2017-7206
The ffh2645extractrbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...
CVE-2017-5037
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...
CVE-2017-5037
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...
Design/Logic Flaw
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
ALPINE-CVE-2017-5025
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
Design/Logic Flaw
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
DEBIAN-CVE-2017-5024
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5024
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5024
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5025
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5024
FFmpeg in Google Chrome prior to 56.0.2924.76 for Linux, Windows and Mac, failed to perform proper bounds checking, which allowed a remote attacker to potentially exploit heap corruption via a crafted video file...
CVE-2017-5024
CVE-2017-5024 reflects a heap overflow in FFmpeg used by Google Chrome prior to 56.0.2924.76 (Linux/Windows/macOS), caused by improper bounds checking and exploitable via crafted multimedia content. Multiple advisories (Arch Linux ASA-201702-10; Alpine Linux CVE-2017-5024; Debian security notes) ...