Ffmpeg

Ffmpeg

484 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2016-7905

  • EPSS 0.54%
  • Published 23.12.2016 05:59:00
  • Last modified 12.04.2025 10:46:40

The read_gab2_sub function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (NULL pointer used) via a crafted AVI file.

5.5

CVE-2016-8595

  • EPSS 0.24%
  • Published 23.12.2016 05:59:00
  • Last modified 12.04.2025 10:46:40

The gsm_parse function in libavcodec/gsm_parser.c in FFmpeg before 3.1.5 allows remote attackers to cause a denial of service (assert fault) via a crafted AVI file.

5.5

CVE-2016-9561

  • EPSS 0.24%
  • Published 23.12.2016 05:59:00
  • Last modified 12.04.2025 10:46:40

The che_configure function in libavcodec/aacdec_template.c in FFmpeg before 3.2.1 allows remote attackers to cause a denial of service (allocation of huge memory, and being killed by the OS) via a crafted MOV file.

8.8

CVE-2016-3062

  • EPSS 2.51%
  • Published 16.06.2016 18:59:08
  • Last modified 12.04.2025 10:46:40

The mov_read_dref function in libavformat/mov.c in Libav before 11.7 and FFmpeg before 0.11 allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via the entries value in a dref box in an MP4 file.

8.8

CVE-2016-2330

  • EPSS 0.87%
  • Published 12.02.2016 05:59:04
  • Last modified 12.04.2025 10:46:40

libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer size, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted .tga file, related to t...

8.8

CVE-2016-2329

  • EPSS 1.16%
  • Published 12.02.2016 05:59:03
  • Last modified 12.04.2025 10:46:40

libavcodec/tiff.c in FFmpeg before 2.8.6 does not properly validate RowsPerStrip values and YCbCr chrominance subsampling factors, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified ot...

8.8

CVE-2016-2328

  • EPSS 1.07%
  • Published 12.02.2016 05:59:02
  • Last modified 12.04.2025 10:46:40

libswscale/swscale_unscaled.c in FFmpeg before 2.8.6 does not validate certain height values, which allows remote attackers to cause a denial of service (out-of-bounds array read access) or possibly have unspecified other impact via a crafted .cine f...

8.8

CVE-2016-2327

  • EPSS 1.07%
  • Published 12.02.2016 05:59:01
  • Last modified 12.04.2025 10:46:40

libavcodec/pngenc.c in FFmpeg before 2.8.5 uses incorrect line sizes in certain row calculations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted .avi fil...

8.8

CVE-2016-2326

  • EPSS 0.82%
  • Published 12.02.2016 05:59:00
  • Last modified 12.04.2025 10:46:40

Integer overflow in the asf_write_packet function in libavformat/asfenc.c in FFmpeg before 2.8.5 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PTS (aka presentation timestamp) value in a ...

6.5

CVE-2016-2213

  • EPSS 0.68%
  • Published 03.02.2016 14:59:00
  • Last modified 12.04.2025 10:46:40

The jpeg2000_decode_tile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.6 allows remote attackers to cause a denial of service (out-of-bounds array read access) via crafted JPEG 2000 data.