CVSS: 8.8EPSS: 1%CPEs: 106EXPL: 0CVE-2014-8544 – Debian Security Advisory 3189-1
https://notcve.org/view.php?id=CVE-2014-8544
05 Nov 2014 — libavcodec/tiff.c in FFmpeg before 2.4.2 does not properly validate bits-per-pixel fields, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted TIFF data. libavcodec/tiff.c en FFmpeg anterior a 2.4.2 no valida debidamente los campos bits-per-pixel, lo que permite a atacantes remotos causar una denegación de servicio (acceso fuera de rango) o posiblemente tener otro impacto no especificado a través de datos TIFF manipulados. I... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=e1c0cfaa419aa5d320540d5a1b3f8fd9b82ab7e5 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 1%CPEs: 105EXPL: 0CVE-2014-8545 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2014-8545
05 Nov 2014 — libavcodec/pngdec.c in FFmpeg before 2.4.2 accepts the monochrome-black format without verifying that the bits-per-pixel value is 1, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted PNG data. libavcodec/pngdec.c en FFmpeg anterior a 2.4.2 acepta el formato de negro monocromo sin verificar que el valor bits-per-pixel sea 1, lo que permite a atacantes remotos causar una denegación de servicio (acceso fuera de rango) o posib... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=3e2b745020c2dbf0201fe7df3dad9e7e0b2e1bb6 • CWE-189: Numeric Errors •
CVSS: 8.8EPSS: 1%CPEs: 105EXPL: 0CVE-2014-8546 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2014-8546
05 Nov 2014 — Integer underflow in libavcodec/cinepak.c in FFmpeg before 2.4.2 allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted Cinepak video data. Desbordamiento de enteros en libavcodec/cinepak.c en FFmpeg anterior a 2.4.2 permite a atacantes remotos causar una denegación de servicio (acceso fuera de rango) o posiblemente tener otro impacto no especificado a través de datos manipulados de vídeos Cinepak. Multiple vulnerabilities have been ... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=e7e5114c506957f40aafd794e06de1a7e341e9d5 • CWE-189: Numeric Errors •
CVSS: 8.8EPSS: 0%CPEs: 106EXPL: 0CVE-2014-8547 – Debian Security Advisory 3189-1
https://notcve.org/view.php?id=CVE-2014-8547
05 Nov 2014 — libavcodec/gifdec.c in FFmpeg before 2.4.2 does not properly compute image heights, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted GIF data. libavcodec/gifdec.c en FFmpeg anterior a 2.4.2 no calcula debidamente las alturas de los imágenes, lo que permite a atacantes remotos causar una denegación de servicio (acceso fuera de rango) o posiblemente tener otro impacto no especificado a través de datos GIF manipulados. It wa... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=8f1457864be8fb9653643519dea1c6492f1dde57 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 106EXPL: 0CVE-2014-8548 – Debian Security Advisory 3189-1
https://notcve.org/view.php?id=CVE-2014-8548
05 Nov 2014 — Off-by-one error in libavcodec/smc.c in FFmpeg before 2.4.2 allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted Quicktime Graphics (aka SMC) video data. Error de superación de límite (off-by-one) en libavcodec/smc.c en FFmpeg anterior a 2.4.2 permite a atacantes remotos causar una denegación de servicio (acceso fuera de rango) o posiblemente tener otro impacto no especificado a través de datos manipulados de vídeos Quicktime Graph... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=c727401aa9d62335e89d118a5b4e202edf39d905 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 105EXPL: 0CVE-2014-8549 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2014-8549
05 Nov 2014 — libavcodec/on2avc.c in FFmpeg before 2.4.2 does not constrain the number of channels to at most 2, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted On2 data. libavcodec/on2avc.c en FFmpeg anterior a 2.4.2 no limita el número de canales a 2 como máximo, lo que permite a atacantes remotos causar una denegación de servicio (acceso fuera de rango) o posiblemente tener otro impacto no especificado a través de datos On2 manipul... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=550f3e9df3410b3dd975e590042c0d83e20a8da3 • CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 5%CPEs: 5EXPL: 0CVE-2005-4048
https://notcve.org/view.php?id=CVE-2005-4048
07 Dec 2005 — Heap-based buffer overflow in the avcodec_default_get_buffer function (utils.c) in FFmpeg libavcodec 0.4.9-pre1 and earlier, as used in products such as (1) mplayer, (2) xine-lib, (3) Xmovie, and (4) GStreamer, allows remote attackers to execute arbitrary commands via small PNG images with palettes. • http://article.gmane.org/gmane.comp.video.ffmpeg.devel/26558 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •