1127 matches found
Out-of-bounds
nsvdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service out-of-bounds read and write via a crafted NSV file that triggers "us...
Code injection
The decodeinit function in kmvc.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a large palette size...
Code injection
The decodeTonalComponents function in the Actrac3 codec atrac3.c in libavcodec in FFmpeg 0.7.x before 0.7.12, and 0.8.x before 0.8.11; and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service infinite loop...
Design/Logic Flaw
The dpcmdecodeframe function in dpcm.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted stere...
Code injection
The adpcmdecodeframe function in adpcm.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via an ADPCM fil...
Heap overflow
Heap-based buffer overflow in the vqadecodechunk function in the VQA codec vqavideo.c in libavcodec in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.2 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a...
Buffer overflow
Buffer overflow in mjpegbdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a...
CVE-2011-3952
The decodeinit function in kmvc.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a large palette size...
CVE-2011-3947
CVE-2011-3947 describes a buffer overflow in mjpegbdec.c of FFmpeg/libavcodec that can be triggered by a crafted MJPEG-B file. Affected components/versions include FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x b...
CVE-2012-0859
The renderline function in the vorbis codec vorbis.c in libavcodec in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted Vorbis file, related to a large multiplier. NOTE: this vulnerability exists because of...
CVE-2012-0852
The adpcmdecodeframe function in adpcm.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via an ADPCM fil...
CVE-2011-3940
nsvdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service out-of-bounds read and write via a crafted NSV file that triggers "us...
CVE-2011-3951
The dpcmdecodeframe function in dpcm.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted stere...
CVE-2012-0852
The adpcmdecodeframe function in adpcm.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via an ADPCM fil...
CVE-2011-3929
The CVE-2011-3929 issue affects FFmpeg and Libav releases, where the avpriv_dv_produce_packet function in libavcodec may dereference NULL pointers when processing a crafted DV file, potentially causing a crash and enabling arbitrary code execution. Affected versions include FFmpeg 0.7.x before 0....
CVE-2011-3947
Buffer overflow in mjpegbdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a...
CVE-2012-0853
The decodeTonalComponents function in the Actrac3 codec atrac3.c in libavcodec in FFmpeg 0.7.x before 0.7.12, and 0.8.x before 0.8.11; and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service infinite loop...
CVE-2011-3947
Buffer overflow in mjpegbdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a...
CVE-2012-0852
Affected software: FFmpeg (libavcodec) and Libav. The vulnerability is in adpcm_decode_frame in adpcm.c, present in FFmpeg before 0.9.1 and Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3. Root cause: processing an ADPCM file where the number of channels i...
CVE-2011-3952
CVE-2011-3952 affects FFmpeg libavcodec KMVC decoding (decode_init in kmvc.c). According to the initial description, the issue allows a remote attacker to cause a crash (DoS) and possibly execute arbitrary code via a large KMVC palette in a KMVC-encoded file, affecting FFmpeg up to pre-0.10 and L...