CVSS: 10.0EPSS: 0%CPEs: 61EXPL: 1CVE-2013-4265 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-4265
23 Nov 2013 — The av_reallocp_array function in libavutil/mem.c in FFmpeg before 2.0.1 has an unspecified impact and remote vectors related to a "wrong return code" and a resultant NULL pointer dereference. La función av_reallocp_array en libavutil/mem.c de FFmpeg anterior a la versión 2.0.1 tiene un impacto sin especificar y vectores remotos relacionados con un "código de retorno incorrecto", resultante en una referencia a puntero nulo. Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to... • http://www.ffmpeg.org/security.html •
CVSS: 10.0EPSS: 1%CPEs: 57EXPL: 0CVE-2013-0872 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0872
23 Nov 2013 — The swr_init function in libswresample/swresample.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via an invalid or unsupported (1) input or (2) output channel layout, related to an out-of-bounds array access. La función swr_init en libswresample/swresample.c de FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto no especificado a través de (2) entradas o (2) salidas inválidas o sin soporte en el diseño del canal, relacionado con un array de acces... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=21cd905cd44a4bbafe8631bbaa6021d328413ce5 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 1%CPEs: 58EXPL: 0CVE-2013-0873 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0873
23 Nov 2013 — The read_header function in libavcodec/shorten.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via an invalid channel count, related to "freeing invalid addresses." La función read_header en libavcodec/shorten.c de FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto sin especificar a través de un contador de canal inválido, relacionado con "direcciones de liberación inválidas". Multiple vulnerabilities have been found in FFmpeg, the worst of which... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=4f1279154ee9baf2078241bf5619774970d18b25 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 0%CPEs: 57EXPL: 0CVE-2013-0874 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0874
23 Nov 2013 — The (1) doubles2str and (2) shorts2str functions in libavcodec/tiff.c in FFmpeg before 1.1.3 allow remote attackers to have an unspecified impact via a crafted TIFF image, related to an out-of-bounds array access. Las funciones (1) doubles2str y (2) shorts2str en libavcodec/tiff.c en FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos provocar un impacto no especificado a través de una imagen TIFF manipulada, relacionada con un array de acceso fuera de límite. Multiple vulnerabilities have been f... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=e1219cdaf9fb4bc8cea410e1caf802373c1bfe51 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 57EXPL: 0CVE-2013-0875 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0875
23 Nov 2013 — The ff_add_png_paeth_prediction function in libavcodec/pngdec.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via a crafted PNG image, related to an out-of-bounds array access. La función ff_add_png_paeth_prediction en libavcodec/pngdec.c de FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto no especificado a través de una imagen PNG manipulada, relacionado con un array de acceso fuera de límites. Multiple vulnerabilities have been found in FFmpe... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=1ac0fa50eff30d413206cffa5f47f7fe6d4849b1 • CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 0%CPEs: 57EXPL: 0CVE-2013-0876 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0876
23 Nov 2013 — Multiple integer overflows in the (1) old_codec37 and (2) old_codec47 functions in libavcodec/sanm.c in FFmpeg before 1.1.3 allow remote attackers to have an unspecified impact via crafted LucasArts Smush data, which triggers an out-of-bounds array access. Desbordamiento de enteros múltiple en las funciones (1) old_codec37 y (2) old_codec47 de libavcodec/sanm.c de FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto no especificado a través de datos LucasArts Smush manipulados, ... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=5260edee7e5bd975837696c8c8c1a80eb2fbd7c1 • CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 0%CPEs: 58EXPL: 0CVE-2013-0877 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0877
23 Nov 2013 — The old_codec37 function in libavcodec/sanm.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via crafted LucasArts Smush data that has a large size when decoded, related to an out-of-bounds array access. La función old_codec37 en libavcodec/sanm.c de FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto sin especificar a través de datos LucasArts Smush manipulados que tienen un tamaño grande cuando son decodificados, relacionado con un array de acces... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=365270aec5c2b9284230abc702b11168818f14cf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 58EXPL: 0CVE-2013-0878 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0878
23 Nov 2013 — The advance_line function in libavcodec/targa.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via crafted Targa image data, related to an out-of-bounds array access. La función advance_line de libavcodec/targa.c en FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto no especificado a través de datos de imagen Targa, relacionado con un array de acceso fuera de límite. Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=f5955d9f6f9ffdb81864c3de1c7b801782a55725 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 1%CPEs: 59EXPL: 0CVE-2013-0866 – Debian Security Advisory 2793-1
https://notcve.org/view.php?id=CVE-2013-0866
11 Nov 2013 — The aac_decode_init function in libavcodec/aacdec.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.2 allows remote attackers to have an unspecified impact via a large number of channels in an AAC file, which triggers an out-of-bounds array access. La función aac_decode_init en libavcodec / aacdec.c en FFmpeg anterior a 1.0.4 y 1.1.x anterior a 1.1.2 permite a atacantes remotos tener un impacto no especificado a través de un gran número de canales en un archivo AAC, lo que desencadena un acceso fuera de limites... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=47e462eecc0a47ad40f59376199f93f227e21d13 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2013-3670 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2013-3670
10 Jun 2013 — The rle_unpack function in vmdav.c in libavcodec in FFmpeg git 20130328 through 20130501 does not properly use the bytestream2 API, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted RLE data. NOTE: the vendor has listed this as an issue fixed in 1.2.1, but the issue is actually in new code that was not shipped with the 1.2.1 release or any earlier release. La función rle_unpack en vmdav.c en libavcodec en FFmpeg git 20130328 a la 201305... • http://ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •