22 matches found
Astra Linux – Vulnerability in ffmpeg
A denial-of-service vulnerability exists in FFmpeg 4.2 due to a memory leak in the configinput function in the afacrossover.c file...
Astra Linux – Vulnerability in ffmpeg, ffmpeg5
There is a NULL pointer dereference vulnerability in FFmpeg’s Firequalizer filter libavfilter/affirequalizer.c. This vulnerability arises due to a missing check on the return value of avmallocarray in the configinput function. An attacker could exploit this vulnerability by tricking a victim into...
AXIS OS 安全漏洞
AXIS OS is an operating system for edge devices developed by Axis, a Swedish company. There is a security vulnerability in AXIS OS, which stems from improper validation of configuration file inputs in the local file system. This vulnerability may allow code execution and potentially escalate...
PT-2026-25049
🔴 CVE-2026-26793 - Critical GL-iNet GL-AR300M16 v4.3.11 was discovered to contain a command injection vulnerability via the set config function. This vulnerability allows attackers to execute arbitrary commands via ... https://t.co/4ioEauePbG https://t.co/UVrVh3JYcc...
NULL Pointer Dereference
Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the configinput function. An attacker can cause the application to crash by tricking a victim into processing a specially crafted media file with the Firequalizer filter enabled. Remediation Upgrade ffmpeg t...
CVE-2025-33246
CVE-2025-33246 affects the NVIDIA NeMo Framework across platforms, with the vulnerability residing in the ASR Evaluator utility. A crafted input in a configuration parameter can trigger a command injection, enabling possible code execution, privilege escalation, data tampering, or information dis...
PT-2026-20405
Name of the Vulnerable Software and Affected Versions NVIDIA NeMo Framework affected versions not specified Description The NVIDIA NeMo Framework contains a flaw within the ASR Evaluator utility. A user can inject commands by providing specially crafted input to a configuration parameter...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ffmpeg (UTSA-2025-936082)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-936082 advisory. Buffer Overflow vulnerability in function configinput in libavfilter/vfgblur.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ffmpeg (UTSA-2025-936087)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-936087 advisory. A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the configinput function in afacrossover.c. Tenable has extracted the preceding...
PT-2025-38735
Name of the Vulnerable Software and Affected Versions FFmpeg affected versions not specified Description A flaw exists in the config input function within the FFmpeg multimedia library due to pointer dereferencing. Successful exploitation by a remote attacker may lead to a denial-of-service...
The vulnerability of the config_input function in the af_acrossover.c component of the FFmpeg multimedia library, related to improper memory release before deleting the last reference, allows a hacker to trigger a service failure.
The vulnerability of the configinput function in the afacrossover.c component of the FFmpeg multimedia library is related to improper memory release before deleting the last reference. Exploiting this vulnerability may allow a remote attacker to cause a service failure...
SUSE CVE-2020-20891
Buffer Overflow vulnerability in function configinput in libavfilter/vfgblur.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts...
SUSE CVE-2020-22026
Buffer Overflow vulnerability exists in FFmpeg 4.2 in the configinput function at libavfilter/aftremolo.c, which could let a remote malicious user cause a Denial of Service...
CVE-2022-41958 Deserialization Vulnerability by yaml config input in super-xray
super-xray is a web vulnerability scanning tool. Versions prior to 0.7 assumed trusted input for the program config which is stored in a yaml file. An attacker with local access to the file could exploit this and compromise the program. This issue has been addressed in commit 4d0d5966 and will be...
The vulnerability of the config_input function in the libavfilter/vf_gblur.c component of the multimedia library FFmpeg allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the configinput function in the libavfilter/vfgblur.c file of the FFmpeg multimedia library involves copying buffers without checking the input data. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause...
The vulnerability of the config_input function in the Ffmpeg library, related to buffer overflow in memory, allows a hacker to cause a system failure.
The vulnerability of the configinput function in the Ffmpeg library is related to buffer overflow in memory. Exploiting this vulnerability could allow a remote attacker to cause a service failure...
UBUNTU-CVE-2020-20891
Buffer Overflow vulnerability in function configinput in libavfilter/vfgblur.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts...
CVE-2020-22056
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the configinput function in afacrossover.c...
UBUNTU-CVE-2020-22056
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the configinput function in afacrossover.c...
DEBIAN-CVE-2020-22026
Buffer Overflow vulnerability exists in FFmpeg 4.2 in the configinput function at libavfilter/aftremolo.c, which could let a remote malicious user cause a Denial of Service...