EUVD-2010-1550

Malware in sbrugna...

EUVD-2011-4284

Malware in sbrugna...

CVE-2011-4353

The 1 avimagefillpointers, 2 vp5parsecoeff, and 3 vp6parsecoeff functions in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allow remote attackers to cause a denial of service...

(Pwn2Own) Oracle Java FLV Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of FLV...

Debian DSA-2624-1 : ffmpeg - several vulnerabilities

Several vulnerabilities have been discovered in FFmpeg, a multimedia player, server and encoder. Multiple input validations in the decoders/demuxers for Shorten, Chinese AVS video, VP5, VP6, AVI, AVS and MPEG-1/2 files could lead to the execution of arbitrary code. Most of these issues were...

[SECURITY] [DSA 2624-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2624-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff February 16, 2013 http://www.debian.org/security/faq -...

Debian: Security Advisory (DSA-2624-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2011-4353

The 1 avimagefillpointers, 2 vp5parsecoeff, and 3 vp6parsecoeff functions in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allow remote attackers to cause a denial of service...

CVE-2011-4353

CVE-2011-4353 affects FFmpeg and Libav: the vulnerable functions are av_image_fill_pointers , vp5_parse_coeff , and vp6_parse_coeff . A crafted VP5/VP6 stream can trigger an out-of-bounds read, causing a denial of service. Affected versions include FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0...

Debian: Security Advisory (DSA-2378-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu Update for libav USN-1333-1

Ubuntu Update for Linux kernel vulnerabilities USN-1333-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN13331.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for libav USN-1333-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This...

Ubuntu 11.04 / 11.10 : libav vulnerabilities (USN-1333-1)

Steve Manzuik discovered that Libav incorrectly handled certain malformed Matroska files. If a user were tricked into opening a crafted Matroska file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the...

USN-1333-1: Libav vulnerabilities

Steve Manzuik discovered that Libav incorrectly handled certain malformed Matroska files. If a user were tricked into opening a crafted Matroska file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking the...

FreeBSD : ffmpeg -- multiple vulnerabilities (ea2ddc49-3e8e-11e1-8095-5404a67eef98)

Ubuntu Security Notice USN-1320-1 reports : Phillip Langlois discovered that FFmpeg incorrectly handled certain malformed QDM2 streams. If a user were tricked into opening a crafted QDM2 stream file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary...

Debian DSA-2378-1 : ffmpeg - several vulnerabilities

Several vulnerabilities have been discovered in FFmpeg, a multimedia player, server and encoder. Multiple input validations in the decoders for QDM2, VP5, VP6, VMD and SVQ1 files could lead to the execution of arbitrary code. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive te...

ffmpeg library multiple security vulnerabilities

Multiple memory corruptions on QDM2, VP5, VP6, VMD and SVQ1 files parsing...

Ubuntu 10.04 LTS / 10.10 : ffmpeg vulnerabilities (USN-1320-1)

Steve Manzuik discovered that FFmpeg incorrectly handled certain malformed Matroska files. If a user were tricked into opening a crafted Matroska file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking th...

USN-1320-1: FFmpeg vulnerabilities

Steve Manzuik discovered that FFmpeg incorrectly handled certain malformed Matroska files. If a user were tricked into opening a crafted Matroska file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of the user invoking th...

[SECURITY] [DSA 2378-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2378-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff January 03, 2012 http://www.debian.org/security/faq -...

DSA-2378-1 ffmpeg - several

Bulletin has no description...