CVE-2017-14171

In libavformat/nsvdec.c in FFmpeg 2.4 and 3.3.3, a DoS in nsvparseNSVfheader due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted NSV file, which claims a large "tableentriesused" field in the header but does not contain sufficient backing data, is provided, th...

CVE-2017-14169

CVE-2017-14169 affects FFmpeg/libavformat: specifically the mxf_read_primer_pack function in libavformat/mxfdec.c. The description documents an integer signedness error when a crafted MXF file provides a large item_num (e.g., 0xffffffff), causing item_num to become negative and bypassing the chec...

CVE-2017-14171

CVE-2017-14171 is a denial-of-service in FFmpeg’s NSV header parsing (libavformat/nsvdec.c) caused by a missing EOF check in nsv_parse_NSVf_header(). A crafted NSV file misreports table_entries_used in the header but lacks backing data, causing the loop over table_entries_used to consume excessiv...

FFmpeg 'ivr_read_header()' function denial of service vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'ivrreadheader' function in the libavformat/rmdec.c file in FFmpeg version 3.3.3, which stems from the program's failure to adequately detect EOF End ...

CVE-2017-14055

In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mvreadheader due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted MV file, which claims a large "nbframes" field in the header but does not contain sufficient backing data, is provided, the loop over t...

Design/Logic Flaw

In FFmpeg 2.4 and 3.3.3, the readdata function in libavformat/hls.c does not restrict reload attempts for an insufficient list, which allows remote attackers to cause a denial of service infinite loop...

CVE-2017-14058

In FFmpeg 2.4 and 3.3.3, the readdata function in libavformat/hls.c does not restrict reload attempts for an insufficient list, which allows remote attackers to cause a denial of service infinite loop...

CVE-2017-14056

In libavformat/rl2.c in FFmpeg 3.3.3, a DoS in rl2readheader due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted RL2 file, which claims a large "framecount" field in the header but does not contain sufficient backing data, is provided, the loops for...

Design/Logic Flaw

In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mvreadheader due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted MV file, which claims a large "nbframes" field in the header but does not contain sufficient backing data, is provided, the loop over t...

Design/Logic Flaw

In libavformat/rl2.c in FFmpeg 3.3.3, a DoS in rl2readheader due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted RL2 file, which claims a large "framecount" field in the header but does not contain sufficient backing data, is provided, the loops for...

CVE-2017-14054

In libavformat/rmdec.c in FFmpeg 3.3.3, a DoS in ivrreadheader due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted IVR file, which claims a large "len" field in the header but does not contain sufficient backing data, is provided, the first type==4 loop would...

CVE-2017-14054

In libavformat/rmdec.c in FFmpeg 3.3.3, a DoS in ivrreadheader due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted IVR file, which claims a large "len" field in the header but does not contain sufficient backing data, is provided, the first type==4 loop would...

CVE-2017-14054

CVE-2017-14054 concerns FFmpeg 3.3.3: in libavformat/rmdec.c, ivr_read_header() lacks an EOF check, so a crafted IVR file with a large len can cause a DoS by driving the first type==4 loop to consume excessive CPU resources. The issue is a remote-denial-of-service risk described in multiple advis...

CVE-2017-14056

CVE-2017-14056 affects FFmpeg 3.3.3 in libavformat/rl2.c: rl2_read_header() lacks an End-of-File check for crafted RL2 files claiming a large frame_count, leading to loops that can exhaust CPU and memory. Impact: potential remote DoS via heavy resource consumption when parsing malicious RL2 strea...

CVE-2017-14055

CVE-2017-14055 affects FFmpeg 3.3.3 in libavformat/mvdec.c, where mv_read_header() lacks an EOF check, enabling a DoS that can lead to extremely high CPU and memory usage when processing a crafted MV file with a large nb_frames field but insufficient data. The issue is part of a broader set of EO...

CVE-2017-14054

In libavformat/rmdec.c in FFmpeg 3.3.3, a DoS in ivrreadheader due to lack of an EOF End of File check might cause huge CPU consumption. When a crafted IVR file, which claims a large "len" field in the header but does not contain sufficient backing data, is provided, the first type==4 loop would...

CVE-2017-14058

In FFmpeg 2.4 and 3.3.3, the readdata function in libavformat/hls.c does not restrict reload attempts for an insufficient list, which allows remote attackers to cause a denial of service infinite loop...

CVE-2017-14055

In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mvreadheader due to lack of an EOF End of File check might cause huge CPU and memory consumption. When a crafted MV file, which claims a large "nbframes" field in the header but does not contain sufficient backing data, is provided, the loop over t...

CVE-2017-14058

In FFmpeg 2.4 and 3.3.3, the readdata function in libavformat/hls.c does not restrict reload attempts for an insufficient list, which allows remote attackers to cause a denial of service infinite loop...

DEBIAN-CVE-2017-11665

The ffamfgetfieldvalue function in libavformat/rtmppkt.c in FFmpeg 3.3.2 allows remote RTMP servers to cause a denial of service Segmentation Violation and application crash via a crafted stream...