DEBIAN-CVE-2025-25473

FFmpeg git master before commit c08d30 was discovered to contain a memory leak in the avformatfreecontext function in libavutil/mem.c...

SUSE CVE-2015-1208

Integer underflow in the movreaddefault function in libavformat/mov.c in FFmpeg before 2.4.6 allows remote attackers to obtain sensitive information from heap and/or stack memory via a crafted MP4 file...

CVE-2018-5684

CVE-2018-5684 affects Libav up to version 12.2. The vulnerability is an invalid memcpy call in the function ff_mov_read_stsd_entries within libavformat/mov.c. A remote attacker can cause a denial of service (segmentation fault) and program failure by supplying a crafted AVI file. No patch/version...

FFmpeg 'mov_read_default' function integer overflow vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. An integer overflow vulnerability exists in the 'movreaddefault' function in the libavformat/mov.c file in FFmpeg versions prior to 2.4.6. A remote attacker can exploit this vulnerability t...

CVE-2017-14222

In libavformat/mov.c in FFmpeg 3.3.3, a DoS in readtfra due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted MOV file, which claims a large "itemcount" field in the header but does not contain sufficient backing data, is provided, the loop would...

CVE-2015-1207

Double-free vulnerability in libavformat/mov.c in FFMPEG in Google Chrome 41.0.2251.0 allows remote attackers to cause a denial of service memory corruption and crash via a crafted .m4a file...

FFmpeg integer overflow vulnerability (CNVD-2017-01242)

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. An integer overflow vulnerability exists in the 'movbuildindex' function in the libavformat/mov.c file in FFmpeg. A remote attacker can exploit this vulnerability to execute code and cause ...

ALPINE-CVE-2016-6164

Integer overflow in the movbuildindex function in libavformat/mov.c in FFmpeg before 2.8.8, 3.0.x before 3.0.3 and 3.1.x before 3.1.1 allows remote attackers to have unspecified impact via vectors involving sample size...

CVE-2016-6164

Integer overflow in the movbuildindex function in libavformat/mov.c in FFmpeg before 2.8.8, 3.0.x before 3.0.3 and 3.1.x before 3.1.1 allows remote attackers to have unspecified impact via vectors involving sample size...

UBUNTU-CVE-2016-6164

Integer overflow in the movbuildindex function in libavformat/mov.c in FFmpeg before 2.8.8, 3.0.x before 3.0.3 and 3.1.x before 3.1.1 allows remote attackers to have unspecified impact via vectors involving sample size...

UBUNTU-CVE-2016-3062

The movreaddref function in libavformat/mov.c in Libav before 11.7 and FFmpeg before 0.11 allows remote attackers to cause a denial of service memory corruption or execute arbitrary code via the entries value in a dref box in an MP4 file...