24 matches found
DEBIAN-CVE-2009-4640
Array index error in vorbisdec.c in FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted Vorbis file that triggers an out-of-bounds read...
DEBIAN-CVE-2009-4631
Off-by-one error in the VP3 decoder vp3.c in FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted VP3 file that triggers an out-of-bounds read and possibly memory corruption...
CVE-2009-4636
FFmpeg 0.5 allows remote attackers to cause a denial of service hang via a crafted file that triggers an infinite loop...
CVE-2009-4633
vorbisdec.c in FFmpeg 0.5 uses an assignment operator when a comparison operator was intended, which might allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted file that modifies a loop counter and triggers a heap-based buffer overflow...
CVE-2009-4636
FFmpeg 0.5 allows remote attackers to cause a denial of service hang via a crafted file that triggers an infinite loop...
Design/Logic Flaw
The avrescalernd function in the AVI demuxer in FFmpeg 0.5 allows remote attackers to cause a denial of service crash via a crafted AVI file that triggers a divide-by-zero error...
Integer overflow
Multiple integer underflows in FFmpeg 0.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted file that 1 bypasses a validation check in vorbisdec.c and triggers a wraparound of the stack pointer, or 2 access a pointer from out-of-bounds memory in...
DEBIAN-CVE-2009-4636
FFmpeg 0.5 allows remote attackers to cause a denial of service hang via a crafted file that triggers an infinite loop...
Stack overflow
FFmpeg 0.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors that trigger a stack-based buffer overflow...
CVE-2009-4638
Integer overflow in FFmpeg 0.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors...
CVE-2009-4637
FFmpeg 0.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors that trigger a stack-based buffer overflow...
DEBIAN-CVE-2009-4637
FFmpeg 0.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors that trigger a stack-based buffer overflow...
DEBIAN-CVE-2009-4634
Multiple integer underflows in FFmpeg 0.5 allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted file that 1 bypasses a validation check in vorbisdec.c and triggers a wraparound of the stack pointer, or 2 access a pointer from out-of-bounds memory in...
CVE-2009-4637
FFmpeg 0.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors that trigger a stack-based buffer overflow...
CVE-2009-4636
FFmpeg 0.5 allows remote attackers to cause a denial of service hang via a crafted file that triggers an infinite loop...
CVE-2009-4636
CVE-2009-4636 is a vulnerability in FFmpeg 0.5 where a crafted file can trigger an infinite loop, allowing a remote attacker to cause a denial of service. The connected advisories (Mandriva MDVSA-2011:112/2011:114, Gentoo GLSA, OpenVAS plugins) confirm FFmpeg 0.5-related issues and state that upd...
CVE-2009-4632
FFmpeg 0.5 contains CVE-2009-4632 in oggparsevorbis.c where pointer arithmetic flaws can trigger an out-of-bounds read, potentially enabling memory disclosure and a Denial of Service. The issue is documented in Mandriva/Gentoo/OpenVAS advisories referencing FFmpeg, with Remediation: update to pat...
CVE-2009-4637
FFmpeg 0.5 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors that trigger a stack-based buffer overflow...
CVE-2009-4638
CVE-2009-4638 is an FFmpeg 0.5 integer overflow vulnerability that could allow a remote attacker to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors. The connected security records (Debian DSA-2000-1, GLSA 201310-12, and related OpenVAS/NASL entries) confi...
CVE-2009-4631
Off-by-one error in the VP3 decoder vp3.c in FFmpeg 0.5 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted VP3 file that triggers an out-of-bounds read and possibly memory corruption...