Memory corruption

The ffMPVframestart function in libavcodec/mpegvideo.c in FFmpeg before 0.11 allows remote attackers to cause a denial of service memory corruption via unspecified vectors, related to starting "a frame outside SETUP state."...

CVE-2012-2795

Multiple unspecified vulnerabilities in libavcodec/wmalosslessdec.c in FFmpeg before 0.11 have unknown impact and attack vectors related to 1 size of "mclms arrays," 2 "a getbits0 in decodeacfilter," and 3 "too many bits in decodechannelresidues."...

Design/Logic Flaw

Unspecified vulnerability in the decodesliceheader function in libavcodec/h264.c in FFmpeg before 0.11 has unknown impact and attack vectors, related to a "rejected resolution change."...

Design/Logic Flaw

Multiple unspecified vulnerabilities in libavcodec/wmalosslessdec.c in FFmpeg before 0.11 have unknown impact and attack vectors related to 1 size of "mclms arrays," 2 "a getbits0 in decodeacfilter," and 3 "too many bits in decodechannelresidues."...

CVE-2012-2792

Unspecified vulnerability in the decodeinit function in libavcodec/wmalosslessdec.c in FFmpeg before 0.11 has unknown impact and attack vectors, related to the samples per frame...

Design/Logic Flaw

Unspecified vulnerability in libavcodec/avs.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to dimensions and "out of array writes."...

CVE-2012-2783

Unspecified vulnerability in libavcodec/vp56.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, has unknown impact and attack vectors, related to "freeing the returned frame."...

CVE-2012-2803

Double free vulnerability in the mpegdecodeframe function in libavcodec/mpeg12.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, has unknown impact and attack vectors, related to resetting the data size value...

CVE-2012-2776

CVE-2012-2776 affects FFmpeg before 0.11 and Libav before 0.8.4, specifically the decode_cell_data path in libavcodec/indeo3.c. The vulnerability involves an out-of-bounds write in the Indeov3 decoding, with high-severity impact (C, I, A) and network attack vector per NVD metrics. The issue is ti...

CVE-2012-2777

Unspecified vulnerability in the decodepic function in libavcodec/cavsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing in CAVS," a different vulnerability than CVE-2012-2784...

CVE-2012-2791

CVE-2012-2791 affects FFmpeg (before 0.11) and Libav (0.7.x before 0.7.7; 0.8.x before 0.8.5) due to unspecified issues in the transform size affecting functions like decode_band_hdr (indeo4.c) and ff_ivi_decode_blocks (ivi_common.c). The vulnerability has network attack vector and can impact con...

CVE-2012-2782

Unspecified vulnerability in the decodesliceheader function in libavcodec/h264.c in FFmpeg before 0.11 has unknown impact and attack vectors, related to a "rejected resolution change."...

CVE-2012-2786

CVE-2012-2786 is a Libav/FFmpeg vulnerability in the decode_wdlt path (libavcodec/dfa.c) that causes an out-of-bounds write when width/height are not correctly handled. Affected products and versions from connected sources include FFmpeg prior to 0.11 and Libav prior to 0.7.7 (0.7.x) and 0.8.4 (0...

CVE-2012-2785

Technical details about CVE-2012-2785 are not publicly provided in the connected documents; the FFmpeg flaw is described as unspecified vulnerabilities in libavcodec/wmalosslessdec.c before 0.11 with unknown impact. Monitor for updates.

CVE-2012-2796

CVE-2012-2796 affects FFmpeg up to 0.11 and Libav up to 0.8.x up to 0.8.4. The vulnerability is in vc1_decode_frame (libavcodec/vc1dec.c), tied to inconsistencies in coded slice positions and interlacing that trigger out-of-bounds writes. The impact is described as complete confidentiality, integ...

CVE-2012-2779

CVE-2012-2779 affects FFmpeg/Libav indeo5 decoding: the issue is in indeo5decode path where decoding could run with a half-initialized context if the GOP header is invalid, leading to potential memory/logic errors. Affected: FFmpeg up to 0.11 and Libav up to 0.8.x prior to their fixes; the docume...

CVE-2012-2801

Unspecified vulnerability in libavcodec/avs.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to dimensions and "out of array writes."...

CVE-2012-2799

Unspecified vulnerability in libavcodec/wmalosslessdec.c in FFmpeg before 0.11 has unknown impact and attack vectors, related to the "put bit buffer when numsavedbits is reset."...

CVE-2012-2802

Unspecified vulnerability in the ac3decodeframe function in libavcodec/ac3dec.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.4 has unknown impact and attack vectors, related to the "number of output channels" and "out of array writes."...

CVE-2012-2787

Unspecified vulnerability in the decodeframe function in libavcodec/indeo4.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.4 has unknown impact and attack vectors, related to the "setup width/height."...