Ffmpeg Security Vulnerabilities and Issues — Page 3 of Ffmpeg CVE List

Lucene search

FfmpegFfmpeg

466 matches found

CVE•added 2021/05/25 6:15 p.m.•89 views

CVE-2020-20445

FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/lpc.h, which allows a remote malicious user to cause a Denial of Service.

6.5CVSS7.5AI score0.02065EPSS

CVE•added 2022/11/13 8:15 a.m.•89 views

CVE-2022-3965

A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smc_encode_stream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encoder. The manipulation of the argument y_size leads to out-of-bounds read. The attack can be initiate...

8.1CVSS5.9AI score0.00041EPSS

CVE•added 2018/04/11 3:29 a.m.•87 views

CVE-2018-10001

The decode_init function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via an AVI file.

6.5CVSS6.2AI score0.00975EPSS

CVE•added 2011/07/07 9:55 p.m.•86 views

CVE-2011-1931

sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the bounds of an unspecified array, which allows remote attackers to cause a denial ...

6.8CVSS9.7AI score0.01852EPSS

CVE•added 2022/12/16 3:15 p.m.•86 views

CVE-2022-3109

An issue was discovered in the FFmpeg package, where vp3_decode_frame in libavcodec/vp3.c lacks check of the return value of av_malloc() and will cause a null pointer dereference, impacting availability.

7.5CVSS7.3AI score0.00132EPSS

CVE•added 2009/02/02 7:30 p.m.•85 views

CVE-2009-0385

Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a large current_track value, which triggers a NULL pointer dereference.

9.3CVSS6.6AI score0.11552EPSS

CVE•added 2018/07/23 3:29 p.m.•85 views

CVE-2018-1999012

FFmpeg before commit 9807d3976be0e92e4ece3b4b1701be894cd7c2e1 contains a CWE-835: Infinite loop vulnerability in pva format demuxer that can result in a Vulnerability that allows attackers to consume excessive amount of resources like CPU and RAM. This attack appear to be exploitable via specially ...

7.1CVSS6.4AI score0.00512EPSS

CVE•added 2024/07/01 9:15 p.m.•85 views

CVE-2024-32230

FFmpeg 7.0 is vulnerable to Buffer Overflow. There is a negative-size-param bug at libavcodec/mpegvideo_enc.c:1216:21 in load_input_picture in FFmpeg7.0

7.8CVSS7.1AI score0.00032EPSS

CVE•added 2021/09/20 4:15 p.m.•84 views

CVE-2020-20891

Buffer Overflow vulnerability in function config_input in libavfilter/vf_gblur.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.

8.8CVSS8.4AI score0.0061EPSS

CVE•added 2021/06/03 5:15 p.m.•84 views

CVE-2021-33815

dwa_uncompress in libavcodec/exr.c in FFmpeg 4.4 allows an out-of-bounds array access because dc_count is not strictly checked.

8.8CVSS8.5AI score0.00119EPSS

CVE•added 2023/01/12 3:15 p.m.•84 views

CVE-2022-3341

A null pointer dereference issue was discovered in 'FFmpeg' in decode_main_header() function of libavformat/nutdec.c file. The flaw occurs because the function lacks check of the return value of avformat_new_stream() and triggers the null pointer dereference error, causing an application to crash.

5.3CVSS4.9AI score0.0006EPSS

CVE•added 2016/02/03 2:59 p.m.•83 views

CVE-2016-2213

The jpeg2000_decode_tile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.6 allows remote attackers to cause a denial of service (out-of-bounds array read access) via crafted JPEG 2000 data.

6.5CVSS6.2AI score0.00683EPSS

CVE•added 2015/10/15 10:59 a.m.•82 views

CVE-2015-6761

The update_dimensions function in libavcodec/vp8.c in FFmpeg through 2.8.1, as used in Google Chrome before 46.0.2490.71 and other products, relies on a coefficient-partition count during multi-threaded operation, which allows remote attackers to cause a denial of service (race condition and memory...

6.8CVSS8.9AI score0.01459EPSS

CVE•added 2017/11/06 5:29 p.m.•82 views

CVE-2017-15672

The read_header function in libavcodec/ffv1dec.c in FFmpeg 2.4 and 3.3.4 and possibly earlier allows remote attackers to have unspecified impact via a crafted MP4 file, which triggers an out-of-bounds read.

8.8CVSS7.6AI score0.01164EPSS

CVE•added 2017/04/14 4:59 a.m.•82 views

CVE-2017-7862

FFmpeg before 2017-02-07 has an out-of-bounds write caused by a heap-based buffer overflow related to the decode_frame function in libavcodec/pictordec.c.

9.8CVSS9.5AI score0.01662EPSS

CVE•added 2017/12/27 7:29 p.m.•82 views

CVE-2017-9608

The dnxhd decoder in FFmpeg before 3.2.6, and 3.3.x before 3.3.3 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted mov file.

6.5CVSS6AI score0.08942EPSS

CVE•added 2018/06/15 3:29 p.m.•82 views

CVE-2018-12458

An improper integer type in the mpeg4_encode_gop_header function in libavcodec/mpeg4videoenc.c in FFmpeg 2.8 and 4.0 may trigger an assertion violation while converting a crafted AVI file to MPEG4, leading to a denial of service.

6.5CVSS6.2AI score0.00962EPSS

CVE•added 2024/04/19 5:15 p.m.•82 views

CVE-2023-49502

Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the ff_bwdif_filter_intra_c function in the libavfilter/bwdifdsp.c:125:5 component.

8.8CVSS7.1AI score0.0013EPSS

CVE•added 2016/02/12 5:59 a.m.•81 views

CVE-2016-2330

libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer size, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted .tga file, related to the gif_image_write_image, gif_encode_init, and gi...

8.8CVSS8.9AI score0.01007EPSS

CVE•added 2021/09/20 4:15 p.m.•81 views

CVE-2020-20898

Integer Overflow vulnerability in function filter16_prewitt in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts.

8.8CVSS8.3AI score0.00658EPSS

CVE•added 2023/03/29 5:15 p.m.•81 views

CVE-2022-48434

libavcodec/pthread_frame.c in FFmpeg before 5.1.2, as used in VLC and other products, leaves stale hwaccel state in worker threads, which allows attackers to trigger a use-after-free and execute arbitrary code in some circumstances (e.g., hardware re-initialization upon a mid-video SPS change when ...

8.1CVSS8.1AI score0.00254EPSS

CVE•added 2010/09/30 3:0 p.m.•80 views

CVE-2010-3429

flicvideo.c in libavcodec 0.6 and earlier in FFmpeg, as used in MPlayer and other products, allows remote attackers to execute arbitrary code via a crafted flic file, related to an "arbitrary offset dereference vulnerability."

6.8CVSS9.3AI score0.04993EPSS

CVE•added 2016/02/12 5:59 a.m.•79 views

CVE-2016-2329

libavcodec/tiff.c in FFmpeg before 2.8.6 does not properly validate RowsPerStrip values and YCbCr chrominance subsampling factors, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted TIFF file, related to th...

8.8CVSS8.9AI score0.0116EPSS

CVE•added 2017/06/28 6:29 a.m.•79 views

CVE-2017-9991

Heap-based buffer overflow in the xwd_decode_frame function in libavcodec/xwddec.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other ...

7.8CVSS8.2AI score0.00455EPSS

CVE•added 2017/06/28 6:29 a.m.•79 views

CVE-2017-9994

libavcodec/webp.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 does not ensure that pix_fmt is set, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecifi...

7.8CVSS7.4AI score0.00341EPSS

CVE•added 2018/04/24 6:29 a.m.•79 views

CVE-2018-7751

The svg_probe function in libavformat/img2dec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (Infinite Loop) via a crafted XML file.

6.5CVSS6.2AI score0.01066EPSS

CVE•added 2021/06/01 7:15 p.m.•79 views

CVE-2020-22036

A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 in filter_intra at libavfilter/vf_bwdif.c, which might lead to memory corruption and other potential consequences.

8.8CVSS8.9AI score0.00783EPSS

CVE•added 2018/07/05 5:29 p.m.•78 views

CVE-2018-13302

In FFmpeg 4.0.1, improper handling of frame types (other than EAC3_FRAME_TYPE_INDEPENDENT) that have multiple independent substreams in the handle_eac3 function in libavformat/movenc.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to a denial of service or...

8.8CVSS7.3AI score0.0064EPSS

CVE•added 2012/08/20 6:55 p.m.•77 views

CVE-2012-0858

The Shorten codec (shorten.c) in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary...

6.8CVSS7.5AI score0.02795EPSS

CVE•added 2015/06/16 4:59 p.m.•77 views

CVE-2015-3395

The msrle_decode_pal4 function in msrledec.c in Libav before 10.7 and 11.x before 11.4 and FFmpeg before 2.0.7, 2.2.x before 2.2.15, 2.4.x before 2.4.8, 2.5.x before 2.5.6, and 2.6.x before 2.6.2 allows remote attackers to have unspecified impact via a crafted image, related to a pixel pointer, whi...

6.8CVSS8.5AI score0.01049EPSS

CVE•added 2025/01/06 5:15 p.m.•77 views

CVE-2023-6601

A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows bypassing unsafe file extension checks and triggering arbitrary demuxers via base64-encoded data URIs appended with specific file extensions.

4.7CVSS4.8AI score0.00091EPSS

CVE•added 2012/08/20 6:55 p.m.•76 views

CVE-2011-3936

The dv_extract_audio function in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a cra...

4.3CVSS8.6AI score0.01027EPSS

CVE•added 2017/06/28 6:29 a.m.•76 views

CVE-2017-9996

The cdxl_decode_frame function in libavcodec/cdxl.c in FFmpeg 2.8.x before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 does not exclude the CHUNKY format, which allows remote attackers to cause a denial of service (heap-based buffer overflow and applic...

7.8CVSS8.1AI score0.00314EPSS

CVE•added 2018/07/05 5:29 p.m.•76 views

CVE-2018-13303

In FFmpeg 4.0.1, a missing check for failure of a call to init_get_bits8() in the avpriv_ac3_parse_header function in libavcodec/ac3_parser.c may trigger a NULL pointer dereference while converting a crafted AVI file to MPEG4, leading to a denial of service.

6.5CVSS6.3AI score0.00434EPSS

CVE•added 2016/01/15 3:59 a.m.•75 views

CVE-2016-1897

FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains the first line of a local file.

5.5CVSS5.5AI score0.48759EPSS

CVE•added 2025/01/03 6:15 p.m.•75 views

CVE-2024-36613

FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavformat library allowing for an integer overflow, potentially resulting in a denial-of-service (DoS) condition or other undefined behavior.

6.2CVSS7.2AI score0.00035EPSS

CVE•added 2016/12/23 5:59 a.m.•74 views

CVE-2016-7122

The avi_read_nikon function in libavformat/avidec.c in FFmpeg before 3.1.4 is vulnerable to infinite loop when it decodes an AVI file that has a crafted 'nctg' structure.

5.5CVSS5.8AI score0.00186EPSS

CVE•added 2017/04/14 4:59 a.m.•74 views

CVE-2017-7863

FFmpeg before 2017-02-04 has an out-of-bounds write caused by a heap-based buffer overflow related to the decode_frame_common function in libavcodec/pngdec.c.

9.8CVSS9.5AI score0.01878EPSS

CVE•added 2018/07/23 3:29 p.m.•74 views

CVE-2018-1999013

FFmpeg before commit a7e032a277452366771951e29fd0bf2bd5c029f0 contains a use-after-free vulnerability in the realmedia demuxer that can result in vulnerability allows attacker to read heap memory. This attack appear to be exploitable via specially crafted RM file has to be provided as input. This v...

6.5CVSS6.5AI score0.00364EPSS

CVE•added 2021/09/20 4:15 p.m.•74 views

CVE-2020-20892

An issue was discovered in function filter_frame in libavfilter/vf_lenscorrection.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a division by zero.

8.8CVSS8.3AI score0.0034EPSS

CVE•added 2025/01/06 5:15 p.m.•74 views

CVE-2023-6604

A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation.

5.3CVSS5.3AI score0.00473EPSS

CVE•added 2024/04/17 2:15 p.m.•74 views

CVE-2024-31578

FFmpeg version n6.1.1 was discovered to contain a heap use-after-free via the av_hwframe_ctx_init function.

7.5CVSS6.8AI score0.00125EPSS

CVE•added 2015/01/22 10:59 p.m.•73 views

CVE-2014-7933

Use-after-free vulnerability in the matroska_read_seek function in libavformat/matroskadec.c in FFmpeg before 2.5.1, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted Matroska file that triggers...

7.5CVSS9.3AI score0.05935EPSS

CVE•added 2017/11/21 8:29 a.m.•73 views

CVE-2017-16840

The VC-2 Video Compression encoder in FFmpeg 3.0 and 3.4 allows remote attackers to cause a denial of service (out-of-bounds read) because of incorrect buffer padding for non-Haar wavelets, related to libavcodec/vc2enc.c and libavcodec/vc2enc_dwt.c.

9.8CVSS9AI score0.01585EPSS

CVE•added 2015/09/06 2:59 a.m.•72 views

CVE-2015-6826

The ff_rv34_decode_init_thread_copy function in libavcodec/rv34.c in FFmpeg before 2.7.2 does not initialize certain structure members, which allows remote attackers to cause a denial of service (invalid pointer access) or possibly have unspecified other impact via crafted (1) RV30 or (2) RV40 Real...

7.5CVSS8.8AI score0.00887EPSS

CVE•added 2016/01/15 3:59 a.m.•72 views

CVE-2016-1898

FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains an arbitrary line of a local file.

5.5CVSS5.5AI score0.29201EPSS

CVE•added 2022/05/02 7:15 p.m.•72 views

CVE-2022-1475

An integer overflow vulnerability was found in FFmpeg versions before 4.4.2 and before 5.0.1 in g729_parse() in llibavcodec/g729_parser.c when processing a specially crafted file.

5.5CVSS5.6AI score0.00084EPSS

CVE•added 2024/04/26 3:15 p.m.•72 views

CVE-2023-51794

Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/af_stereowiden.c:120:69.

7.8CVSS6.7AI score0.00043EPSS

CVE•added 2024/04/17 7:15 p.m.•72 views

CVE-2024-31585

FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Error vulnerability in libavfilter/avf_showspectrum.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

5.3CVSS6.5AI score0.00027EPSS

CVE•added 2012/08/20 6:55 p.m.•71 views

CVE-2012-0852

The adpcm_decode_frame function in adpcm.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an ADPCM f...

6.8CVSS7.6AI score0.0251EPSS

Total number of security vulnerabilities466