UBUNTU-CVE-2016-8675

The getvlc2 function in getbits.h in Libav before 11.9 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted mp3 file, possibly related to startcode sequences during m4v detection...

Cairo rendering crash due to memory allocation issue with FFmpeg 0.10 — Mozilla

Security researcher Bert Massop reported a crash in the Cairo graphics layer on Linux systems using the LibAV library included in version 0.10 of the FFmpeg library. This was due to an error when allocating the LibAV header when decoding some videos...

FFmpeg and Libav 'libavcodec/xface.h' Denial of Service Vulnerability

FFmpeg is a free program that performs recording, transferring and streaming of audio and video in various formats. FFmpeg versions prior to 2.5.2 libavcodec/xface.h establishes certain numeric and word array dimensions that do not conform to the required mathematical relationships, which can be...

libav LZO Integer Overflow (CVE-2014-4609)

A code execution vulnerability exists in the libav library. The vulnerability is due to an integer overflow while processing literal runs in the LZO compressed data. A remote unauthenticated attacker could exploit this vulnerability by enticing a target user to open a crafted file with an...