127 matches found
CVE-2018-13302
In FFmpeg 4.0.1, improper handling of frame types other than EAC3FRAMETYPEINDEPENDENT that have multiple independent substreams in the handleeac3 function in libavformat/movenc.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to a denial of service or...
CVE-2018-13305
CVE-2018-13305 affects FFmpeg 4.x, where a missing check for negative mquant values in the VC-1 decoding path (vc1_put_blocks_clamped in libavcodec/vc1_block.c) can trigger an out-of-bounds access while converting a crafted AVI to MPEG-4, potentially causing information disclosure or a denial of ...
CVE-2018-13302
CVE-2018-13302 affects FFmpeg 4.0.1 in the libavformat/movenc.c handle_eac3 path. A crafted AVI can trigger an out-of-bounds access when handling multiple independent substreams, leading to denial of service (and potentially other impacts as described in the entry). Public advisories note this vu...
CVE-2018-13305
In FFmpeg 4.0.1, due to a missing check for negative values of the mquant variable, the vc1putblocksclamped function in libavcodec/vc1block.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to an information disclosure or a denial of service...
CVE-2018-13300
In FFmpeg 3.2 and 4.0.1, an improper argument AVCodecParameters passed to the avprivrequestsample function in the handleeac3 function in libavformat/movenc.c may trigger an out-of-array read while converting a crafted AVI file to MPEG4, leading to a denial of service and possibly an information...
CVE-2018-13302
In FFmpeg 4.0.1, improper handling of frame types other than EAC3FRAMETYPEINDEPENDENT that have multiple independent substreams in the handleeac3 function in libavformat/movenc.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to a denial of service or...
CVE-2018-13305
In FFmpeg 4.0.1, due to a missing check for negative values of the mquant variable, the vc1putblocksclamped function in libavcodec/vc1block.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to an information disclosure or a denial of service...
CVE-2018-10001
CVE-2018-10001 affects FFmpeg prior to and including 3.4.2, where the function decode_init in libavcodec/utvideodec.c can be abused by a crafted AVI file to trigger a denial of service via an out-of-bounds read. The provided documents consistently describe DoS potential but do not include exploit...
CVE-2018-10001
The decodeinit function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service out of array read via an AVI file...
CVE-2018-9841
The export function in libavfilter/vfsignature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via a long filename...
CVE-2018-9841
The export function in libavfilter/vfsignature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via a long filename...
CVE-2018-9841
CVE-2018-9841 affects FFmpeg up to 3.4.2; the export function in libavfilter/vf_signature.c can be triggered by a long filename to cause a denial of service via out-of-bounds access (unspecified other impact). Public references (NVD, CNVD, OSV, Gentoo GLSA) confirm FFmpeg involvement and 3.4.2 li...
CVE-2018-9841
The export function in libavfilter/vfsignature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via a long filename...
CVE-2018-9841
The export function in libavfilter/vfsignature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service out-of-array access or possibly have unspecified other impact via a long filename...
CVE-2018-8087
Memory leak in the hwsimnewradionl function in drivers/net/wireless/mac80211hwsim.c in the Linux kernel through 4.15.9 allows local users to cause a denial of service memory consumption by triggering an out-of-array error case...
Memory corruption
Memory leak in the hwsimnewradionl function in drivers/net/wireless/mac80211hwsim.c in the Linux kernel through 4.15.9 allows local users to cause a denial of service memory consumption by triggering an out-of-array error case...
DEBIAN-CVE-2018-8087
Memory leak in the hwsimnewradionl function in drivers/net/wireless/mac80211hwsim.c in the Linux kernel through 4.15.9 allows local users to cause a denial of service memory consumption by triggering an out-of-array error case...
CVE-2018-8087
Memory leak in the hwsimnewradionl function in drivers/net/wireless/mac80211hwsim.c in the Linux kernel through 4.15.9 allows local users to cause a denial of service memory consumption by triggering an out-of-array error case...
CVE-2018-8087
Memory leak in the hwsimnewradionl function in drivers/net/wireless/mac80211hwsim.c in the Linux kernel through 4.15.9 allows local users to cause a denial of service memory consumption by triggering an out-of-array error case...
CVE-2018-7557
The decodeinit function in libavcodec/utvideodec.c in FFmpeg 2.8 through 3.4.2 allows remote attackers to cause a denial of service Out of array read via an AVI file with crafted dimensions within chroma subsampling data...