Page 12 of 60 results (0.007 seconds)

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2016-7562

https://notcve.org/view.php?id=CVE-2016-7562

The ff_draw_pc_font function in libavcodec/cga_data.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (buffer overflow) via a crafted AVI file. La función ff_draw_pc_font en libavcodec/cga_data.c en FFmpeg en versiones anteriores a 3.1.4 permite a atacantes remotos provocar una denegación de servicio (desbordamiento de búfer) a través de un archivo AVI manipulado. • http://www.openwall.com/lists/oss-security/2016/10/08/1 http://www.securityfocus.com/bid/94835 https://security.gentoo.org/glsa/201701-71 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2016-7785

https://notcve.org/view.php?id=CVE-2016-7785

The avi_read_seek function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (assert fault) via a crafted AVI file. La función avi_read_seek en libavformat/avidec.c en FFmpeg en versiones anteriores a 3.1.4 permite a atacantes remotos provocar una denegación de servicio (fallo de asertividad) a través de un archivo AVI manipulado. • http://www.openwall.com/lists/oss-security/2016/10/08/1 http://www.securityfocus.com/bid/94833 https://security.gentoo.org/glsa/201701-71 • CWE-20: Improper Input Validation •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2016-7905

https://notcve.org/view.php?id=CVE-2016-7905

The read_gab2_sub function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (NULL pointer used) via a crafted AVI file. La función read_gab2_sub function en libavformat/avidec.c en FFmpeg en versiones anteriores a 3.1.4 permite a atacantes remotos provocar una denegación de servicio (puntero NULL utilizado) a través de un archivo AVI manipulado. • http://www.openwall.com/lists/oss-security/2016/10/08/1 http://www.securityfocus.com/bid/94837 https://security.gentoo.org/glsa/201701-71 • CWE-476: NULL Pointer Dereference •

CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0

CVE-2016-6920

https://notcve.org/view.php?id=CVE-2016-6920

Heap-based buffer overflow in the decode_block function in libavcodec/exr.c in FFmpeg before 3.1.3 allows remote attackers to cause a denial of service (application crash) via vectors involving tile positions. Desbordamiento de búfer basado en memoria dinámica en la función decode_block en libavcodec/exr.c en FFmpeg en versiones anteriores a 3.1.3 permite a atacantes provocar una denegación de servicio (caída de la aplicación) a través de vectores que implican posiciones de baldosa. • http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit%3Bh=79f52a0dbd484aad111e4bf4a4f7047c7ceb6137 http://packetstormsecurity.com/files/138618/ffmpeg-3.1.2-Heap-Overflow.html http://www.securityfocus.com/archive/1/539368/100/0/threaded http://www.securityfocus.com/bid/92664 http://www.securityfocus.com/bid/92790 https://www.ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 7.5EPSS: 1%CPEs: 5EXPL: 0

CVE-2005-4048

https://notcve.org/view.php?id=CVE-2005-4048

Heap-based buffer overflow in the avcodec_default_get_buffer function (utils.c) in FFmpeg libavcodec 0.4.9-pre1 and earlier, as used in products such as (1) mplayer, (2) xine-lib, (3) Xmovie, and (4) GStreamer, allows remote attackers to execute arbitrary commands via small PNG images with palettes. • http://article.gmane.org/gmane.comp.video.ffmpeg.devel/26558 http://cvs.freedesktop.org/gstreamer/gst-ffmpeg/ChangeLog?rev=1.239&view=markup http://secunia.com/advisories/17892 http://secunia.com/advisories/18066 http://secunia.com/advisories/18087 http://secunia.com/advisories/18107 http://secunia.com/advisories/18400 http://secunia.com/advisories/18739 http://secunia.com/advisories/18746 http://secunia.com/advisories/19114 http://secunia.com/advisories/19192 http://secunia&# • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •