22 matches found
EUVD-2024-30049
Malicious code in bioql PyPI...
Advisory ROSA-SA-2025-2949
software: ffmpeg 4.4.6 OS: ROSA-CHROME unaffected versions = ffmpeg-4.4.6-1 affected versions ffmpeg-4.4.6-1 CVE-ID: CVE-2025-1594 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: A buffer overflow vulnerability in FFmpeg allows a remote attacker to initiate an attack via the ffaacsearchfortns function in...
CVE-2020-22027
A heap-based Buffer Overflow vulnerability exits in FFmpeg 4.2 in deflate16 at libavfilter/vfneighbor.c, which might lead to memory corruption and other potential consequences...
PT-2024-8679 · FFmpeg +1 · Ffmpeg +1
Name of the Vulnerable Software and Affected Versions: FFmpeg version 7.0 Description: The issue is related to a buffer overflow in the hevc frame end function of the FFmpeg library, located in libavcodec/hevcdec.c. This can lead to an out-of-bounds operation in memory, potentially allowing an...
FFmpeg buffer overflow vulnerability (CNVD-2024-29679)
FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A buffer overflow vulnerability exists in FFmpeg version v.n6.1-3-g466799d4f5, which can be exploited by an attacker to execute arbitrary code via the avmalloc function in the...
FFmpeg buffer overflow vulnerability (CNVD-2024-29677)
FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A buffer overflow vulnerability exists in FFmpeg version v.n6.1-3-g466799d4f5, which can be exploited by an attacker to execute arbitrary code via the ffgaussianblur8 function in the...
FFmpeg Buffer Overflow Vulnerability (CNVD-2024-27560)
FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A buffer overflow vulnerability exists in Ffmpeg version v.N113007-g8d24a28d06 due to incorrect bounds checking in the libavfilter/avfshowspectrum.c:1789:52 component of the...
PT-2024-4516 · FFmpeg +2 · Ffmpeg +2
Name of the Vulnerable Software and Affected Versions: Ffmpeg versions v.n6.1-3-g466799d4f5 Description: The issue is related to a buffer overflow vulnerability in the config eq output function, located in the libavfilter/asrc afirsrc.c component. This vulnerability allows a local attacker to...
PT-2024-4522 · FFmpeg +4 · Ffmpeg +4
Name of the Vulnerable Software and Affected Versions: Ffmpeg version v.n6.1-3-g466799d4f5 Description: The issue is related to a Buffer Overflow in the av samples set silence function, located in the libavutil/samplefmt.c component of the Ffmpeg library. This allows a local attacker to potential...
CVE-2023-49528
Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, allows a local attacker to execute arbitrary code and cause a denial of service DoS via the afdialoguenhance.c:261:5 in the destereo component...
PT-2023-9218 · FFmpeg +4 · Ffmpeg +4
Name of the Vulnerable Software and Affected Versions: FFmpeg versions v.n6.1-3-g466799d4f5 Description: The issue is related to a buffer overflow vulnerability in the set encoder id function, located in the /fftools/ffmpeg enc.c component. This vulnerability can be exploited by an attacker to...
PT-2023-9358 · FFmpeg +4 · Ffmpeg +4
Name of the Vulnerable Software and Affected Versions: Ffmpeg version v.n6.1-3-g466799d4f5 Description: The issue is related to a buffer overflow in the av malloc function, located in the libavutil/mem.c component of the Ffmpeg library. This buffer overflow is caused by copying without checking t...
Denial Of Service (DoS)
ffmpeg is vulnerable to denial of service. The vulnerability exists due to a buffer overflowin the configinput function at libavfilter/aftremolo.c...
FFmpeg buffer overflow vulnerability (CNVD-2021-39533)
FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A buffer overflow vulnerability exists in the convolutiony10bit function in libavfilter/vfvmafmotion.c in FFmpeg version 4.2. An attacker can...
FFmpeg Buffer Overflow Vulnerability (CNVD-2021-39535)
FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A buffer overflow vulnerability exists in the lagfunframe16 function in libavfilter/vflagfun.c in FFmpeg version 4.2. An attacker can exploit this...
FFmpeg buffer overflow vulnerability (CNVD-2021-39537)
FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A buffer overflow vulnerability exists in filtervertically8 in libavfilter/vfavgblur.c in FFmpeg version 4.2. An attacker can exploit this...
FFmpeg buffer overflow vulnerability (CNVD-2021-39532)
FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A buffer overflow vulnerability exists in the builddiffmap function in libavfilter/vffieldmatch.c in FFmpeg version 4.2. An attacker can exploit...
FFmpeg buffer overflow vulnerability (CNVD-2021-37145)
FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A buffer overflow vulnerability exists in FFmpeg version 4.1. A remote attacker can exploit this vulnerability to cause a denial of service via...
FFmpeg buffer overflow vulnerability (CNVD-2021-28376)
FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A buffer overflow vulnerability exists in libavcodec in FFmpeg 4.3 and earlier versions. An attacker could exploit this vulnerability via speciall...
FFmpeg Buffer Overflow Vulnerability (CNVD-2021-25376)
FFmpeg is a set of open source computer programs that can be used to record, convert digital audio and video to streams under the LGPL or GPL license. A buffer overflow vulnerability exists in the sniffchannelorder function in aacdectemplate.c in FFmpeg 3.1.2. An attacker can exploit this...