CVSS: 9.3EPSS: 0%CPEs: 57EXPL: 0CVE-2013-0874 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0874
23 Nov 2013 — The (1) doubles2str and (2) shorts2str functions in libavcodec/tiff.c in FFmpeg before 1.1.3 allow remote attackers to have an unspecified impact via a crafted TIFF image, related to an out-of-bounds array access. Las funciones (1) doubles2str y (2) shorts2str en libavcodec/tiff.c en FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos provocar un impacto no especificado a través de una imagen TIFF manipulada, relacionada con un array de acceso fuera de límite. Multiple vulnerabilities have been f... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=e1219cdaf9fb4bc8cea410e1caf802373c1bfe51 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 61EXPL: 0CVE-2013-4263 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-4263
23 Nov 2013 — libavfilter in FFmpeg before 2.0.1 has unspecified impact and remote vectors related to a crafted "plane," which triggers an out-of-bounds heap write. libavfilter en FFmpeg en versiones anteriores a 2.0.1 tiene un impacto no especificado y vectores remotos relacionados con un "plano" manipulado, lo que desencadena una operación de escritura de memoria dinámica fuera de límites. Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service ... • http://www.ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 58EXPL: 0CVE-2013-0877 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0877
23 Nov 2013 — The old_codec37 function in libavcodec/sanm.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via crafted LucasArts Smush data that has a large size when decoded, related to an out-of-bounds array access. La función old_codec37 en libavcodec/sanm.c de FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto sin especificar a través de datos LucasArts Smush manipulados que tienen un tamaño grande cuando son decodificados, relacionado con un array de acces... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=365270aec5c2b9284230abc702b11168818f14cf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 61EXPL: 1CVE-2013-4265 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-4265
23 Nov 2013 — The av_reallocp_array function in libavutil/mem.c in FFmpeg before 2.0.1 has an unspecified impact and remote vectors related to a "wrong return code" and a resultant NULL pointer dereference. La función av_reallocp_array en libavutil/mem.c de FFmpeg anterior a la versión 2.0.1 tiene un impacto sin especificar y vectores remotos relacionados con un "código de retorno incorrecto", resultante en una referencia a puntero nulo. Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to... • http://www.ffmpeg.org/security.html •
CVSS: 10.0EPSS: 1%CPEs: 58EXPL: 0CVE-2013-0873 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0873
23 Nov 2013 — The read_header function in libavcodec/shorten.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via an invalid channel count, related to "freeing invalid addresses." La función read_header en libavcodec/shorten.c de FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto sin especificar a través de un contador de canal inválido, relacionado con "direcciones de liberación inválidas". Multiple vulnerabilities have been found in FFmpeg, the worst of which... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=4f1279154ee9baf2078241bf5619774970d18b25 • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 61EXPL: 1CVE-2013-4264 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-4264
23 Nov 2013 — The kempf_decode_tile function in libavcodec/g2meet.c in FFmpeg before 2.0.1 allows remote attackers to cause a denial of service (out-of-bounds heap write) via a G2M4 encoded file. La función kempf_decode_tile en libavcodec/g2meet.c de FFmpeg anterior a la versión 2.0.1 permite a atacantes remotos provocar una denegación de servicio (escritura de memoria dinámica fuera de límites) a través de un archivo G2M4 codificado. Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to ar... • http://www.ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 58EXPL: 0CVE-2013-0878 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0878
23 Nov 2013 — The advance_line function in libavcodec/targa.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via crafted Targa image data, related to an out-of-bounds array access. La función advance_line de libavcodec/targa.c en FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto no especificado a través de datos de imagen Targa, relacionado con un array de acceso fuera de límite. Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=f5955d9f6f9ffdb81864c3de1c7b801782a55725 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 1%CPEs: 59EXPL: 0CVE-2013-0866 – Debian Security Advisory 2793-1
https://notcve.org/view.php?id=CVE-2013-0866
11 Nov 2013 — The aac_decode_init function in libavcodec/aacdec.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.2 allows remote attackers to have an unspecified impact via a large number of channels in an AAC file, which triggers an out-of-bounds array access. La función aac_decode_init en libavcodec / aacdec.c en FFmpeg anterior a 1.0.4 y 1.1.x anterior a 1.1.2 permite a atacantes remotos tener un impacto no especificado a través de un gran número de canales en un archivo AAC, lo que desencadena un acceso fuera de limites... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=47e462eecc0a47ad40f59376199f93f227e21d13 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 1%CPEs: 1EXPL: 0CVE-2013-3674 – Debian Security Advisory 3003-1
https://notcve.org/view.php?id=CVE-2013-3674
10 Jun 2013 — The cdg_decode_frame function in cdgraphics.c in libavcodec in FFmpeg before 1.2.1 does not validate the presence of non-header data in a buffer, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted CD Graphics Video data. La función cdg_decode_frame en cdgraphics.c en libavcodec en FFmpeg anterior a 1.2.1 no valida la presencia de datos non-header en el búfer, lo que permite a atacantes remotos provocar una denegación de servicio (acceso ... • http://ffmpeg.org/security.html • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2013-3671 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2013-3671
10 Jun 2013 — The format_line function in log.c in libavutil in FFmpeg before 1.2.1 uses inapplicable offset data during a certain category calculation, which allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via crafted data that triggers a log message. La función format_line en log.c en libavutil en FFmpeg anterior a 1.2.1 utiliza datos offset inaplicables durante el cálculo de determinadas categorías, lo que permite a atacantes remotos provocar una denegación de s... • http://ffmpeg.org/security.html • CWE-189: Numeric Errors •