Linux Distros Unpatched Vulnerability : CVE-2018-18829

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There exists a NULL pointer dereference in ffvc1parseframeheaderadv in vc1.c in Libav 12.3, which allows attackers to cause a denial-of-service through a crafte...

Linux Distros Unpatched Vulnerability : CVE-2018-18828

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There exists a heap-based buffer overflow in vc1decodeiblockadv in vc1block.c in Libav 12.3, which allows attackers to cause a denial-of-service via a crafted a...

Linux Distros Unpatched Vulnerability : CVE-2017-17127

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The vc1decodeframe function in libavcodec/vc1dec.c in Libav 12.2 allows remote attackers to cause a denial of service NULL pointer dereference and application...

Linux Distros Unpatched Vulnerability : CVE-2018-13305

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In FFmpeg 4.0.1, due to a missing check for negative values of the mquant variable, the vc1putblocksclamped function in libavcodec/vc1block.c may trigger an...

SUSE CVE-2018-13305

In FFmpeg 4.0.1, due to a missing check for negative values of the mquant variable, the vc1putblocksclamped function in libavcodec/vc1block.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to an information disclosure or a denial of service...

SUSE CVE-2018-18826

There exists a heap-based buffer overflow in vc1decodepmbintfi in vc1block.c in Libav 12.3, which allows attackers to cause a denial-of-service via a crafted aac file...

SUSE CVE-2018-18828

There exists a heap-based buffer overflow in vc1decodeiblockadv in vc1block.c in Libav 12.3, which allows attackers to cause a denial-of-service via a crafted aac file...

SUSE CVE-2018-18829

There exists a NULL pointer dereference in ffvc1parseframeheaderadv in vc1.c in Libav 12.3, which allows attackers to cause a denial-of-service through a crafted aac file...

SUSE CVE-2018-19130

In Libav 12.3, there is an invalid memory access in vc1decodeframe in libavcodec/vc1dec.c that allows attackers to cause a denial-of-service via a crafted aac file. NOTE: This may be a duplicate of CVE-2017-17127...

SUSE CVE-2020-18775

In Libav 12.3, there is a heap-based buffer over-read in vc1decodebmbintfi in vc1block.c that allows an attacker to cause denial-of-service via a crafted file...

CVE-2020-18776

In Libav 12.3, there is a segmentation fault in vc1decodebmbintfr in vc1block.c that allows an attacker to cause denial-of-service via a crafted file...

UBUNTU-CVE-2020-18775

In Libav 12.3, there is a heap-based buffer over-read in vc1decodebmbintfi in vc1block.c that allows an attacker to cause denial-of-service via a crafted file...

UBUNTU-CVE-2020-18776

In Libav 12.3, there is a segmentation fault in vc1decodebmbintfr in vc1block.c that allows an attacker to cause denial-of-service via a crafted file...

Libav 缓冲区错误漏洞

Libav is an open source audio and video processing tool that provides cross-platform tools and libraries for converting, manipulating, and streaming various multimedia formats and protocols. vc1decodebmbintfi in vc1block.c in Libav version 12.3 is vulnerable to a heap buffer overflow. An attacker...

PT-2021-10244 · Libav · Libav

Name of the Vulnerable Software and Affected Versions: Libav version 12.3 Description: The issue is a heap-based buffer over-read in the vc1 decode p mb intfi function in vc1 block.c, which can be exploited by an attacker to cause a denial-of-service via a crafted file. Recommendations: For Libav...

PT-2021-10242 · Libav · Libav

Name of the Vulnerable Software and Affected Versions: Libav version 12.3 Description: The issue is a heap-based buffer over-read in the vc1 decode b mb intfi function in vc1 block.c, which can be exploited by an attacker to cause a denial-of-service via a crafted file. Recommendations: For Libav...

ffmpeg/ffmpeg_AV_CODEC_ID_VC1_fuzzer: Index-out-of-bounds in vc1_decode_ac_coeff

Project: https://git.ffmpeg.org/ffmpeg.git Detailed report: https://oss-fuzz.com/testcase?key=4822259010633728 Project: ffmpeg Fuzzer: libFuzzerffmpegAVCODECIDVC1fuzzer Fuzz target binary: ffmpegAVCODECIDVC1fuzzer Job Type: libfuzzerubsanffmpeg Platform Id: linux Crash Type: Index-out-of-bounds...

UBUNTU-CVE-2018-19130

DISPUTED In Libav 12.3, there is an invalid memory access in vc1decodeframe in libavcodec/vc1dec.c that allows attackers to cause a denial-of-service via a crafted aac file. NOTE: This may be a duplicate of CVE-2017-17127...

PT-2018-14822 · FFmpeg · Libav

Name of the Vulnerable Software and Affected Versions: Libav version 12.3 Description: The issue is related to an invalid memory access in the vc1 decode frame function in libavcodec/vc1dec.c, which can be exploited by attackers to cause a denial-of-service via a crafted aac file. Recommendations...

Libav Buffer Overflow Vulnerability (CNVD-2019-23074)

Libav formerly FFmpeg is Libav team's set of cross-platform audio and video can be recorded, converted to a solution, which includes a libavcodec encoder. A heap buffer overflow vulnerability exists in the 'vc1decodeiblockadv' function of the vc1block.c file in Libav version 12.3, which can be...