Astra Linux – Vulnerability in ffmpeg

In FFmpeg 4.4, the adtsdecodeextradata function in libavformat/adtsenc.c does not check the return value of initgetbits. This is a necessary step, as the second argument of initgetbits can be manipulated...

CVE-2026-23456

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfconntrackh323: fix OOB read in decodeint CONS case In decodeint, the CONS case calls getbitsbs, 2 to read a length value, then calls getuintbs, len without checking that len bytes remain in the buffer. The existing...

JLSEC-2025-118 adts_decode_extradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the init_get_bits return...

adtsdecodeextradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the initgetbits return value, which is a necessary step because the second argument to initgetbits can be crafted...

DEBIAN-CVE-2021-38171

adtsdecodeextradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the initgetbits return value, which is a necessary step because the second argument to initgetbits can be crafted...

DEBIAN-CVE-2020-22016

A heap-based Buffer Overflow vulnerability in FFmpeg 4.2 at libavcodec/getbits.h when writing .mov files, which might lead to memory corruption and other potential consequences...

FFmpeg 缓冲区错误漏洞

FFmpeg is a complete solution for recording, converting and streaming audio and video. A heap buffer overflow vulnerability exists in libavcodec/getbits.h in FFmpeg version 4.2 when writing to .mov files. An attacker could exploit this vulnerability to cause memory corruption...

OESA-2021-1060 OpenEXR security update

OpenEXR is a high dynamic-range HDR image file format originally developed by Industrial Light & Magic for use in computer imaging applications. Security Fixes: In OpenEXR 2.2.0, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash.CVE-2017-9114 ...

DEBIAN-CVE-2018-13303

In FFmpeg 4.0.1, a missing check for failure of a call to initgetbits8 in the avprivac3parseheader function in libavcodec/ac3parser.c may trigger a NULL pointer dereference while converting a crafted AVI file to MPEG4, leading to a denial of service...

UBUNTU-CVE-2018-13303

In FFmpeg 4.0.1, a missing check for failure of a call to initgetbits8 in the avprivac3parseheader function in libavcodec/ac3parser.c may trigger a NULL pointer dereference while converting a crafted AVI file to MPEG4, leading to a denial of service...

DEBIAN-CVE-2017-1000460

In line libavcodec/h264dec.c:500 in libavv13dev0, ffmpegn3.4, chromium56 prior Feb 13, 2017, the return value of initgetbits is ignored and getuegolomb&gb is called on an uninitialized getbits context, which causes a NULL deref exception...

Design/Logic Flaw

In line libavcodec/h264dec.c:500 in libavv13dev0, ffmpegn3.4, chromium56 prior Feb 13, 2017, the return value of initgetbits is ignored and getuegolomb&gb is called on an uninitialized getbits context, which causes a NULL deref exception...

ghostscript: NULL pointer dereference in mem_get_bits_rectangle()

A NULL pointer dereference flaw was found in ghostscript's memgetbitsrectangle function. A specially crafted postscript document could cause a crash in the context of the gs process...

UBUNTU-CVE-2016-8676

The getvlc2 function in getbits.h in Libav 11.9 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted mp3 file. NOTE: this issue exists due to an incomplete fix for CVE-2016-8675...

swfstrings swf_GetBits function 't-data' denial of service vulnerability

SWFTools is a set of software tools for SWF manipulation and creation of utility authoring. swfstrings is a text parsing tool. swftools0.9.2 and previous versions of swfstrings program swfGetBits function 't-data' is empty, resulting in access to the contents of the null pointer, triggering a...