CVSS: 5.5EPSS: 1%CPEs: 2EXPL: 1CVE-2012-6618
https://notcve.org/view.php?id=CVE-2012-6618
24 Dec 2013 — The av_probe_input_buffer function in libavformat/utils.c in FFmpeg before 1.0.2, when running with certain -probesize values, allows remote attackers to cause a denial of service (crash) via a crafted MP3 file, possibly related to frame size or lack of sufficient "frames to estimate rate." La función av_probe_input_buffer en libavformat/utils.c en FFmpeg anteriores a 1.0.2, cuando se ejecutan ciertos valores "probesize", permite a atacantes remotos causar denegación de servicio (caída) a trav... • p=ffmpeg.git%3Ba=commit%3Bh=e74cd2f4706f71da5e9205003c1d8263b54ed3fb • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 64EXPL: 2CVE-2013-7008 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-7008
09 Dec 2013 — The decode_slice_header function in libavcodec/h264.c in FFmpeg before 2.1 incorrectly relies on a certain droppable field, which allows remote attackers to cause a denial of service (deadlock) or possibly have unspecified other impact via crafted H.264 data. La función decode_slice_header en libavcodec/h264.c en FFmpeg anteriores a 2.1 depende incorrectamente de cierto campo deshechable, lo que permite a atacantes remotos causar una denegación de servico (deadlock) o posiblemente tener otro i... • http://ffmpeg.org/security.html •
CVSS: 8.8EPSS: 1%CPEs: 64EXPL: 2CVE-2013-7009 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-7009
09 Dec 2013 — The rpza_decode_stream function in libavcodec/rpza.c in FFmpeg before 2.1 does not properly maintain a pointer to pixel data, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted Apple RPZA data. La función rpza_decode_stream en libavcodec/rpza.c en FFmpeg anteriores a 2.1 no mantiene correctamente un puntero a píxeles, lo cual permite a atacantes remotos causar denegación de servicio (acceso a array fuera... • http://ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 64EXPL: 1CVE-2013-7010 – Debian Security Advisory 2855-1
https://notcve.org/view.php?id=CVE-2013-7010
09 Dec 2013 — Multiple integer signedness errors in libavcodec/dsputil.c in FFmpeg before 2.1 allow remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted data. Múltiples errores de signo de enteros en libavcodec/dsputil.c en FFmpeg anterior a v2.1 permite a atacantes remotos provocar una denegación de servicio (acceso a array fuera de rango) o posiblemente tener otro impacto no especificado a través de información manipulada. Multipl... • http://ffmpeg.org/security.html • CWE-189: Numeric Errors •
CVSS: 8.8EPSS: 1%CPEs: 64EXPL: 2CVE-2013-7011 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-7011
09 Dec 2013 — The read_header function in libavcodec/ffv1dec.c in FFmpeg before 2.1 does not prevent changes to global parameters, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted FFV1 data. La función read_header en libavcodec/ffv1dec.c en FFmpeg anterior a 2.1 no impide los cambios en los parámetros globales, lo que permite a atacantes remotos provocar una denegación de servicio (acceso fuera de rango a un array) ... • http://ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 64EXPL: 2CVE-2013-7012 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-7012
09 Dec 2013 — The get_siz function in libavcodec/jpeg2000dec.c in FFmpeg before 2.1 does not prevent attempts to use non-zero image offsets, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted JPEG2000 data. La función get_siz function en libavcodec/jpeg2000dec.c en FFmpeg anterior a v2.1 no previene de la utilización de offsets de imagen que no sean cero, lo que permite a atacantes remotos provocar una denegación de s... • http://ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 64EXPL: 1CVE-2013-7013 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-7013
09 Dec 2013 — The g2m_init_buffers function in libavcodec/g2meet.c in FFmpeg before 2.1 uses an incorrect ordering of arithmetic operations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted Go2Webinar data. La función g2m_init_buffers en libavcodec/g2meet.c en FFmpeg anterior a v2.1 utiliza un incorrecto orden de las operaciones ariméticas, lo que permite a atacantes remotos provocar una denegación de servicio (acce... • http://ffmpeg.org/security.html • CWE-189: Numeric Errors •
CVSS: 8.8EPSS: 1%CPEs: 64EXPL: 1CVE-2013-7014 – Debian Security Advisory 2855-1
https://notcve.org/view.php?id=CVE-2013-7014
09 Dec 2013 — Integer signedness error in the add_bytes_l2_c function in libavcodec/pngdsp.c in FFmpeg before 2.1 allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted PNG data. ... Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition. • http://ffmpeg.org/security.html • CWE-189: Numeric Errors •
CVSS: 8.8EPSS: 1%CPEs: 64EXPL: 2CVE-2013-7015 – Debian Security Advisory 2855-1
https://notcve.org/view.php?id=CVE-2013-7015
09 Dec 2013 — The flashsv_decode_frame function in libavcodec/flashsv.c in FFmpeg before 2.1 does not properly validate a certain height value, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted Flash Screen Video data. La función flashsv_decode_frame en libavcodec/flashsv.c en FFmpeg anterior a v2.1 no valida correctamente ciertos valores de altura, lo que permite a atacantes remotods provocar una denegación de servi... • http://ffmpeg.org/security.html • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 1%CPEs: 64EXPL: 2CVE-2013-7016 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-7016
09 Dec 2013 — The get_siz function in libavcodec/jpeg2000dec.c in FFmpeg before 2.1 does not ensure the expected sample separation, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted JPEG2000 data. La función get_siz en libavcodec/jpeg2000dec.c en FFmpeg anterior a v2.1 no asegura la separación de ejemplo esperada, lo que permite a atacantes remotos provocar una denegación de servicio (acceso a array fuera de rango) o... • http://ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •