USN-7579-1 godot vulnerabilities

It was discovered that the Godot Engine did not properly handle certain malformed WebM media files. If the Godot Engine opened a specially crafted WebM file, a remote attacker could cause a denial of service, or possibly execute arbitrary code. CVE-2019-2126 It was discovered that the Godot Engin...

USN-5637-1 libvpx vulnerability

It was discovered that libvpx incorrectly handled certain WebM media files. A remote attacker could use this issue to crash an application using libvpx under certain conditions, resulting in a denial of service...

USN-4431-1 ffmpeg vulnerabilities

It was discovered that FFmpeg incorrectly verified empty audio packets or HEVC data. An attacker could possibly use this issue to cause a denial of service via a crafted file. This issue only affected Ubuntu 16.04 LTS, as it was already fixed in Ubuntu 18.04 LTS. For more information see:...

USN-4199-1 libvpx vulnerabilities

It was discovered that libvpx did not properly handle certain malformed WebM media files. If an application using libvpx opened a specially crafted WebM file, a remote attacker could cause a denial of service, or possibly execute arbitrary code...

Memory Corruption Vulnerability in QQ Video

QQ Video is a local player from Tencent that supports movie and music files in any format. A memory corruption vulnerability exists in QQ Video Player when parsing certain format webm files, which can be exploited by attackers to cause a denial of service attack...

Google Chrome FFmpeg Competitive Conditions Vulnerability

Google Chrome is an open source WEB browser. The 'updatedimensions' function in the libavcodec/vp8.c file of FFmpeg used by Google to perform multi-threaded operations relies on coefficient-partition counting, allowing remote attackers to build special WebM files for denial-of-service attacks...

DEBIAN-CVE-2015-6761

The updatedimensions function in libavcodec/vp8.c in FFmpeg through 2.8.1, as used in Google Chrome before 46.0.2490.71 and other products, relies on a coefficient-partition count during multi-threaded operation, which allows remote attackers to cause a denial of service race condition and memory...

Ubuntu 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : ffmpeg vulnerabilities (USN-1104-1)

Cesar Bernardini and Felipe Andres Manzano discovered that FFmpeg incorrectly handled certain malformed flic files. If a user were tricked into opening a crafted flic file, an attacker could cause a denial of service via application crash, or possibly execute arbitrary code with the privileges of...

DEBIAN-CVE-2011-0480

Multiple buffer overflows in vorbisdec.c in the Vorbis decoder in FFmpeg, as used in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344, allow remote attackers to cause a denial of service memory corruption and application crash or possibly have unspecified other impact via a craft...

Buffer overflow

Multiple buffer overflows in vorbisdec.c in the Vorbis decoder in FFmpeg, as used in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344, allow remote attackers to cause a denial of service memory corruption and application crash or possibly have unspecified other impact via a craft...