748 matches found
CVE-2016-2330
libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer size, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted .tga file, related to the gifimagewriteimage, gifencodeinit, and...
CVE-2016-2327
libavcodec/pngenc.c in FFmpeg before 2.8.5 uses incorrect line sizes in certain row calculations, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted .avi file, related to the apngencodeframe and encodeapng...
CVE-2016-2330
libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer size, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted .tga file, related to the gifimagewriteimage, gifencodeinit, and...
CVE-2016-2213
The jpeg2000decodetile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.6 allows remote attackers to cause a denial of service out-of-bounds array read access via crafted JPEG 2000 data...
FreeBSD : ffmpeg -- multiple vulnerabilities (4bae544d-06a3-4352-938c-b3bcbca89298)
NVD reports : The ffdwtdecode function in libavcodec/jpeg2000dwt.c in FFmpeg before 2.8.4 does not validate the number of decomposition levels before proceeding with Discrete Wavelet Transform decoding, which allows remote attackers to cause a denial of service out-of-bounds array access or...
CVE-2015-8662
The ffdwtdecode function in libavcodec/jpeg2000dwt.c in FFmpeg before 2.8.4 does not validate the number of decomposition levels before proceeding with Discrete Wavelet Transform decoding, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have...
CVE-2015-8663
The ffgetbuffer function in libavcodec/utils.c in FFmpeg before 2.8.4 preserves width and height values after a failure, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted .mov file...
CVE-2015-8661
The h264sliceheaderinit function in libavcodec/h264slice.c in FFmpeg before 2.8.3 does not validate the relationship between the number of threads and the number of slices, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other...
Out-of-bounds
The ffgetbuffer function in libavcodec/utils.c in FFmpeg before 2.8.4 preserves width and height values after a failure, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted .mov file...
Out-of-bounds
The ffdwtdecode function in libavcodec/jpeg2000dwt.c in FFmpeg before 2.8.4 does not validate the number of decomposition levels before proceeding with Discrete Wavelet Transform decoding, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have...
CVE-2015-8662
The ffdwtdecode function in libavcodec/jpeg2000dwt.c in FFmpeg before 2.8.4 does not validate the number of decomposition levels before proceeding with Discrete Wavelet Transform decoding, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have...
CVE-2015-8663
The ffgetbuffer function in libavcodec/utils.c in FFmpeg before 2.8.4 preserves width and height values after a failure, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via a crafted .mov file...
CVE-2015-8661
The h264sliceheaderinit function in libavcodec/h264slice.c in FFmpeg before 2.8.3 does not validate the relationship between the number of threads and the number of slices, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other...
ffmpeg -- multiple vulnerabilities
NVD reports: The ffdwtdecode function in libavcodec/jpeg2000dwt.c in FFmpeg before 2.8.4 does not validate the number of decomposition levels before proceeding with Discrete Wavelet Transform decoding, which allows remote attackers to cause a denial of service out-of-bounds array access or possib...
Google Chrome V8 Denial of Service Vulnerability (CNVD-2015-08180)
Google Chrome is the United States Google Google company developed a Web browser. Google V8 is one of the open source JavaScript engine. A security vulnerability exists in the 'BasicJsonStringifier::: SerializeJSArray' function in the json-stringifier.h file in the JSON stringifier of Google V8...
CVE-2015-6776
The opjdwtdecode1 functions in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 47.0.2526.73, allow remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted JPEG 2000 data that is mishandled during a discrete wavele...
CVE-2015-6776
The opjdwtdecode1 functions in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 47.0.2526.73, allow remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted JPEG 2000 data that is mishandled during a discrete wavele...
CVE-2015-6776
CVE-2015-6776 affects OpenJPEG (opj_dwt_decode_1* in dwt.c) as used by PDFium in Google Chrome prior to 47.0.2526.73, allowing remote attackers to trigger a denial of service via crafted JPEG 2000 data. The Debian and Gentoo entries confirm Chrome/Chromium exposure and Python fix guidance: upgrad...
FreeBSD : ffmpeg -- multiple vulnerabilities (b0da85af-21a3-4c15-a137-fe9e4bc86002)
NVD reports : The updatedimensions function in libavcodec/vp8.c in FFmpeg through 2.8.1, as used in Google Chrome before 46.0.2490.71 and other products, relies on a coefficient-partition count during multi-threaded operation, which allows remote attackers to cause a denial of service race...
openSUSE Security Update : ffmpeg (openSUSE-2015-821)
The ffmpeg package was updated to version 2.8.2 to fix the following security and non security issues : - CVE-2015-8216: Fixed the ljpegdecodeyuvscan function in libavcodec/mjpegdec.c which could cause a denial of service out-of-bounds array access bnc955346. - CVE-2015-8217: Fixed the...