367 matches found
CVE-2014-7933
Use-after-free vulnerability in the matroskareadseek function in libavformat/matroskadec.c in FFmpeg before 2.5.1, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska file that triggers...
DEBIAN-CVE-2014-7933
Use-after-free vulnerability in the matroskareadseek function in libavformat/matroskadec.c in FFmpeg before 2.5.1, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska file that triggers...
CVE-2014-7933
Use-after-free vulnerability in the matroskareadseek function in libavformat/matroskadec.c in FFmpeg before 2.5.1, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska file that triggers...
CVE-2014-7933
CVE-2014-7933 is a use-after-free in libavformat/matroskadec.c (FFmpeg) at matroska_read_seek, before 2.5.1, enabling remote denial of service via crafted Matroska files when FFmpeg is used (e.g., in Chrome prior to 40.0.2214.91). The issue affects FFmpeg users and Chromium builds incorporating t...
Updated ffmpeg packages fix security vulnerabilities
The takdecodeframe function in libavcodec/takdec.c in FFmpeg before 2.0.4 does not properly validate a certain bits-per-sample value, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted TAK aka Tom's lossless...
FFmpeg libavformat 'psxstr.c' STR Data Heap Based Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30154/info The 'libavformat' library from FFmpeg is prone to a remote heap-based buffer-overflow vulnerability because of insufficient boundary checks when parsing STR data. Remote attackers can exploit this issue by...
CVE-2014-2263
The mpegtswritepmt function in the MPEG2 transport stream aka DVB muxer libavformat/mpegtsenc.c in FFmpeg, possibly 2.1 and earlier, allows remote attackers to have unspecified impact and vectors, which trigger an out-of-bounds write...
CVE-2012-6618
The avprobeinputbuffer function in libavformat/utils.c in FFmpeg before 1.0.2, when running with certain -probesize values, allows remote attackers to cause a denial of service crash via a crafted MP3 file, possibly related to frame size or lack of sufficient "frames to estimate rate."...
CVE-2012-6618
The avprobeinputbuffer function in libavformat/utils.c in FFmpeg before 1.0.2, when running with certain -probesize values, allows remote attackers to cause a denial of service crash via a crafted MP3 file, possibly related to frame size or lack of sufficient "frames to estimate rate."...
CVE-2012-6618
The connected documents confirm a concrete vulnerability: in FFmpeg, the av_probe_input_buffer function in libavformat/utils.c (FFmpeg before 1.0.2)is exploitable via a crafted MP3 file when using certain -probesize values, causing a remote denial of service (crash). This is the underlying root c...
CVE-2013-0847
The ffid3v2parse function in libavformat/id3v2.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via ID3v2 header data, which triggers an out-of-bounds array access...
CVE-2013-0847
The ffid3v2parse function in libavformat/id3v2.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via ID3v2 header data, which triggers an out-of-bounds array access...
DEBIAN-CVE-2013-2495
The iffreadheader function in iff.c in libavformat in FFmpeg through 1.1.3 does not properly handle data sizes for Interchange File Format IFF data during operations involving a CMAP chunk or a video codec, which allows remote attackers to cause a denial of service integer overflow, out-of-bounds...
Integer overflow
The iffreadheader function in iff.c in libavformat in FFmpeg through 1.1.3 does not properly handle data sizes for Interchange File Format IFF data during operations involving a CMAP chunk or a video codec, which allows remote attackers to cause a denial of service integer overflow, out-of-bounds...
CVE-2013-2495
The iffreadheader function in iff.c in libavformat in FFmpeg through 1.1.3 does not properly handle data sizes for Interchange File Format IFF data during operations involving a CMAP chunk or a video codec, which allows remote attackers to cause a denial of service integer overflow, out-of-bounds...
CVE-2013-2495
The CVE-2013-2495 issue affects FFmpeg’s libavformat, where the iff_read_header function in iff.c mishandles data sizes for IFF data (notably CMAP chunks) in FFmpeg versions up to 1.1.3. This improper handling can lead to a denial of service via integer overflow or out-of-bounds access, potential...
CVE-2013-2495
The iffreadheader function in iff.c in libavformat in FFmpeg through 1.1.3 does not properly handle data sizes for Interchange File Format IFF data during operations involving a CMAP chunk or a video codec, which allows remote attackers to cause a denial of service integer overflow, out-of-bounds...
Design/Logic Flaw
Unspecified vulnerability in the avireadpacket function in libavformat/avidec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to an "out of array read" when a "packet is shrunk."...
Design/Logic Flaw
Unspecified vulnerability in the avireadpacket function in libavformat/avidec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to a large number of vector coded coefficients numveccoeffs...
CVE-2012-2789
CVE-2012-2789 affects FFmpeg (before 0.11) and Libav (0.7.x before 0.7.7; 0.8.x before 0.8.4) due to an unspecified vulnerability in avi_read_packet() in libavformat/avidec.c related to a large number of vector coded coefficients (num_vec_coeffs). The advisory provides no explicit impact vector b...