CVE-2015-8218
- EPSS 1.77%
- Veröffentlicht 17.11.2015 01:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The decode_uncompressed function in libavcodec/faxcompr.c in FFmpeg before 2.8.2 does not validate uncompressed runs, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact vi...
CVE-2015-8217
- EPSS 2.41%
- Veröffentlicht 17.11.2015 01:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
The ff_hevc_parse_sps function in libavcodec/hevc_ps.c in FFmpeg before 2.8.2 does not validate the Chroma Format Indicator, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other im...
CVE-2015-8216
- EPSS 2.41%
- Veröffentlicht 17.11.2015 01:59:00
- Zuletzt bearbeitet 06.05.2026 22:30:45
The ljpeg_decode_yuv_scan function in libavcodec/mjpegdec.c in FFmpeg before 2.8.2 omits certain width and height checks, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impac...
CVE-2015-6761
- EPSS 1.05%
- Veröffentlicht 15.10.2015 10:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
The update_dimensions function in libavcodec/vp8.c in FFmpeg through 2.8.1, as used in Google Chrome before 46.0.2490.71 and other products, relies on a coefficient-partition count during multi-threaded operation, which allows remote attackers to cau...
CVE-2015-6826
- EPSS 2.48%
- Veröffentlicht 06.09.2015 02:59:09
- Zuletzt bearbeitet 06.05.2026 22:30:45
The ff_rv34_decode_init_thread_copy function in libavcodec/rv34.c in FFmpeg before 2.7.2 does not initialize certain structure members, which allows remote attackers to cause a denial of service (invalid pointer access) or possibly have unspecified o...
CVE-2015-6825
- EPSS 2.41%
- Veröffentlicht 06.09.2015 02:59:08
- Zuletzt bearbeitet 06.05.2026 22:30:45
The ff_frame_thread_init function in libavcodec/pthread_frame.c in FFmpeg before 2.7.2 mishandles certain memory-allocation failures, which allows remote attackers to cause a denial of service (invalid pointer access) or possibly have unspecified oth...
CVE-2015-6824
- EPSS 2.41%
- Veröffentlicht 06.09.2015 02:59:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
The sws_init_context function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service (segmentation violation) or possibly have unspecified other impa...
CVE-2015-6823
- EPSS 2.41%
- Veröffentlicht 06.09.2015 02:59:06
- Zuletzt bearbeitet 06.05.2026 22:30:45
The allocate_buffers function in libavcodec/alac.c in FFmpeg before 2.7.2 does not initialize certain context data, which allows remote attackers to cause a denial of service (segmentation violation) or possibly have unspecified other impact via craf...
CVE-2015-6822
- EPSS 2.41%
- Veröffentlicht 06.09.2015 02:59:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
The destroy_buffers function in libavcodec/sanm.c in FFmpeg before 2.7.2 does not properly maintain height and width values in the video context, which allows remote attackers to cause a denial of service (segmentation violation and application crash...
CVE-2015-6821
- EPSS 2.41%
- Veröffentlicht 06.09.2015 02:59:04
- Zuletzt bearbeitet 06.05.2026 22:30:45
The ff_mpv_common_init function in libavcodec/mpegvideo.c in FFmpeg before 2.7.2 does not properly maintain the encoding context, which allows remote attackers to cause a denial of service (invalid pointer access) or possibly have unspecified other i...