CVE-2017-7859

FFmpeg before 2017-03-05 has an out-of-bounds write caused by a heap-based buffer overflow related to the ffh264slicecontextinit function in libavcodec/h264dec.c...

CVE-2017-7863

CVE-2017-7863 is a FFmpeg vulnerability: an out-of-bounds write caused by a heap-based buffer overflow in libavcodec/pngdec.c (decode_frame_common). The impact is an out-of-bounds write that could affect affected FFmpeg builds. Public documents confirm the issue and reference FFmpeg/libav demuxer...

CVE-2017-7862

CVE-2017-7862 is a Libav/libavcodec vulnerability: an out-of-bounds write caused by a heap-based buffer overflow in decode_frame (libavcodec/pictordec.c). Public advisories (Debian DSA-4012, OpenVAS entries) confirm this affects multiple demuxers/decoders and can lead to denial of service or cras...

CVE-2017-7863

FFmpeg before 2017-02-04 has an out-of-bounds write caused by a heap-based buffer overflow related to the decodeframecommon function in libavcodec/pngdec.c...

CVE-2017-7859

FFmpeg before 2017-03-05 has an out-of-bounds write caused by a heap-based buffer overflow related to the ffh264slicecontextinit function in libavcodec/h264dec.c...

CVE-2017-7865

FFmpeg before 2017-01-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the ipvideodecodeblockopcode0xA function in libavcodec/interplayvideo.c and the avcodecaligndimensions2 function in libavcodec/utils.c...

CVE-2017-7866

FFmpeg before 2017-01-23 has an out-of-bounds write caused by a stack-based buffer overflow related to the decodezbuf function in libavcodec/pngdec.c...

CVE-2017-7863

FFmpeg before 2017-02-04 has an out-of-bounds write caused by a heap-based buffer overflow related to the decodeframecommon function in libavcodec/pngdec.c...

CVE-2017-7866

Summary : CVE-2017-7866 affects FFmpeg prior to patched builds, with an out-of-bounds write caused by a stack-based buffer overflow in the decode_zbuf path of libavcodec/pngdec.c . This concrete issue was addressed in FFmpeg/OpenSUSE advisories (e.g., openSUSE-2017-631, openSUSE-2017-1067) which ...

libav denial of service vulnerability (CNVD-2017-04274)

Libav formerly FFmpeg is Libav team's set of cross-platform audio and video can be recorded, converted to a solution, which includes a libavcodec encoder. A denial of service vulnerability exists in libav. An attacker can exploit this vulnerability to cause a denial of service...

FFmpeg 'Libavcodec' Remote Code Execution Vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in Libavcodec in FFmpeg versions prior to 0.11. A remote attacker can exploit this vulnerability to cause a denial of service memory corruption and applicati...

UBUNTU-CVE-2017-7208

The decoderesidual function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...

Heap overflow

The ffh2645extractrbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...

CVE-2017-7206

The ffh2645extractrbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...

CVE-2017-7208

The decoderesidual function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...

Design/Logic Flaw

The decoderesidual function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...

CVE-2017-7206

The ffh2645extractrbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...

UBUNTU-CVE-2017-7206

The ffh2645extractrbsp function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service heap-based buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...

CVE-2017-7208

The decoderesidual function in libavcodec in libav 9.21 allows remote attackers to cause a denial of service buffer over-read or obtain sensitive information from process memory via a crafted h264 video file...

CVE-2017-7206

The CVE-2017-7206 issue affects libavcodec (libav) 9.21, specifically the ff_h2645_extract_rbsp function. A crafted H.264 video file can trigger a heap-based buffer over-read, leading to a denial of service and potential leakage of memory content. Documented impact scores in NVD show CVSS-2/3 bas...