CVE-2011-4352

Integer overflow in the vp3dequant function in the VP3 decoder vp3.c in libavcodec in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allows remote attackers to cause a denial of...

CVE-2011-3945

CVE-2011-3945 affects FFmpeg/Libav: the decode_frame function in the KVG1 decoder (kgv1dec.c) in libavcodec vulnerable to crafted media files, enabling remote DoS and possibly code execution. Affected, per description: FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11; Libav 0.5.x before 0.5.9, ...

CVE-2012-0856

FFmpeg prior to 0.9.1 is affected by a heap-based buffer overflow in MPV_frame_start (libavcodec/mpegvideo.c) when the lowres option is enabled. The vulnerability allows remote attackers to crash the application via a crafted H263 video file; it is noted as a regression-related issue. No specific...

CVE-2012-0850

The CVE-2012-0850 entry is supported by concrete details across connected sources: FFmpeg/libavcodec in FFmpeg before 0.9.1 contains a flaw in sbr_qmf_synthesis (libavcodec/aacsbr.c) that can trigger memory corruption via crafted MPEGs, likely a buffer underflow, leading to application crashes an...

CVE-2012-0854

The vulnerability CVE-2012-0854 affects FFmpeg’s libavcodec/dpcm.c (dpcm_decode_frame) in versions before 0.9.1. The issue arises from using an improper pointer after an audio API change, enabling remote attackers to trigger a denial of service (application crash) through a heap-based buffer over...

CVE-2012-0848

Heap-based buffer overflow in the wssnddecodeframe function in libavcodec/ws-snd1.c in FFmpeg 0.9.1 allows remote attackers to cause a denial of service application crash via a crafted media file, related to an incorrect calculation, aka "wrong samples count."...

CVE-2012-0857

FFmpeg before 0.9.1 is affected by CVE-2012-0857 due to multiple buffer overflows in the get_qcx function (j2kdec.c) of the libavcodec library, enabling remote attackers to cause an application crash (denial of service). The vulnerability is triggered by unspecified vectors. The provided document...

CVE-2012-0850

The sbrqmfsynthesis function in libavcodec/aacsbr.c in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service application crash via a crafted mpg file that triggers memory corruption involving the voff variable, probably a buffer underflow...

CVE-2012-0947

Heap-based buffer overflow in the vqadecodechunk function in the VQA codec vqavideo.c in libavcodec in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.2 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a...

DEBIAN-CVE-2012-0852

The adpcmdecodeframe function in adpcm.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via an ADPCM fil...

DEBIAN-CVE-2011-3951

The dpcmdecodeframe function in dpcm.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted stere...

CVE-2011-3951

The dpcmdecodeframe function in dpcm.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted stere...

CVE-2011-3952

The decodeinit function in kmvc.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a large palette size...

DEBIAN-CVE-2012-0858

The Shorten codec shorten.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary...

DEBIAN-CVE-2011-3940

nsvdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service out-of-bounds read and write via a crafted NSV file that triggers "us...

CVE-2011-3947

Buffer overflow in mjpegbdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a...

CVE-2012-0858

The Shorten codec shorten.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary...

CVE-2012-0852

The adpcmdecodeframe function in adpcm.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via an ADPCM fil...

CVE-2011-3929

The avprivdvproducepacket function in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and application cras...

DEBIAN-CVE-2011-3929

The avprivdvproducepacket function in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service NULL pointer dereference and application cras...