CVSS: 10.0EPSS: 0%CPEs: 58EXPL: 0CVE-2013-0873 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0873
23 Nov 2013 — The read_header function in libavcodec/shorten.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via an invalid channel count, related to "freeing invalid addresses." La función read_header en libavcodec/shorten.c de FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto sin especificar a través de un contador de canal inválido, relacionado con "direcciones de liberación inválidas". Multiple vulnerabilities have been found in FFmpeg, the worst of which... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=4f1279154ee9baf2078241bf5619774970d18b25 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 0%CPEs: 58EXPL: 0CVE-2013-0877 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0877
23 Nov 2013 — The old_codec37 function in libavcodec/sanm.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via crafted LucasArts Smush data that has a large size when decoded, related to an out-of-bounds array access. La función old_codec37 en libavcodec/sanm.c de FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto sin especificar a través de datos LucasArts Smush manipulados que tienen un tamaño grande cuando son decodificados, relacionado con un array de acces... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=365270aec5c2b9284230abc702b11168818f14cf • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 57EXPL: 0CVE-2013-0876 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0876
23 Nov 2013 — Multiple integer overflows in the (1) old_codec37 and (2) old_codec47 functions in libavcodec/sanm.c in FFmpeg before 1.1.3 allow remote attackers to have an unspecified impact via crafted LucasArts Smush data, which triggers an out-of-bounds array access. Desbordamiento de enteros múltiple en las funciones (1) old_codec37 y (2) old_codec47 de libavcodec/sanm.c de FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto no especificado a través de datos LucasArts Smush manipulados, ... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=5260edee7e5bd975837696c8c8c1a80eb2fbd7c1 • CWE-189: Numeric Errors •
CVSS: 8.8EPSS: 0%CPEs: 61EXPL: 0CVE-2013-4263 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-4263
23 Nov 2013 — libavfilter in FFmpeg before 2.0.1 has unspecified impact and remote vectors related to a crafted "plane," which triggers an out-of-bounds heap write. libavfilter en FFmpeg en versiones anteriores a 2.0.1 tiene un impacto no especificado y vectores remotos relacionados con un "plano" manipulado, lo que desencadena una operación de escritura de memoria dinámica fuera de límites. Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service ... • http://www.ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 57EXPL: 0CVE-2013-0875 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0875
23 Nov 2013 — The ff_add_png_paeth_prediction function in libavcodec/pngdec.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via a crafted PNG image, related to an out-of-bounds array access. La función ff_add_png_paeth_prediction en libavcodec/pngdec.c de FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto no especificado a través de una imagen PNG manipulada, relacionado con un array de acceso fuera de límites. Multiple vulnerabilities have been found in FFmpe... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=1ac0fa50eff30d413206cffa5f47f7fe6d4849b1 • CWE-189: Numeric Errors •
CVSS: 10.0EPSS: 0%CPEs: 57EXPL: 0CVE-2013-0872 – Gentoo Linux Security Advisory 201603-06
https://notcve.org/view.php?id=CVE-2013-0872
23 Nov 2013 — The swr_init function in libswresample/swresample.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via an invalid or unsupported (1) input or (2) output channel layout, related to an out-of-bounds array access. La función swr_init en libswresample/swresample.c de FFmpeg anterior a la versión 1.1.3 permite a atacantes remotos generar un impacto no especificado a través de (2) entradas o (2) salidas inválidas o sin soporte en el diseño del canal, relacionado con un array de acces... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=21cd905cd44a4bbafe8631bbaa6021d328413ce5 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 55EXPL: 0CVE-2013-0854 – Debian Security Advisory 2793-1
https://notcve.org/view.php?id=CVE-2013-0854
11 Nov 2013 — The mjpeg_decode_scan_progressive_ac function in libavcodec/mjpegdec.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted MJPEG data. La función mjpeg_decode_scan_progressive_ac en libavcodec/mjpegdec.c de FFmpeg anterior a la versión 1.1 permite a atacantes remotos llevar a cabo un impacto no especificado a través de datos MJPEG manipulados. Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=1f41cffe1e3e79620f587545bdfcbd7e6e68ed29 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 0%CPEs: 58EXPL: 0CVE-2013-0858 – Debian Security Advisory 2793-1
https://notcve.org/view.php?id=CVE-2013-0858
11 Nov 2013 — The atrac3_decode_init function in libavcodec/atrac3.c in FFmpeg before 1.0.4 allows remote attackers to have an unspecified impact via ATRAC3 data with the joint stereo coding mode set and fewer than two channels. La función atrac3_decode_init en libavcodec/atrac3.c en FFmpeg anteriores a 1.0.4 permite a atacantes remotos tener un impacto no especificado a través de datos ATRAC3 con el modo de coficiación "joint stereo" establecido y menos de dos canales. Several security issues have been corrected in mult... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=13451f5520ce6b0afde861b2285dda659f8d4fb4 •
CVSS: 9.8EPSS: 0%CPEs: 59EXPL: 0CVE-2013-0866 – Debian Security Advisory 2793-1
https://notcve.org/view.php?id=CVE-2013-0866
11 Nov 2013 — The aac_decode_init function in libavcodec/aacdec.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.2 allows remote attackers to have an unspecified impact via a large number of channels in an AAC file, which triggers an out-of-bounds array access. La función aac_decode_init en libavcodec / aacdec.c en FFmpeg anterior a 1.0.4 y 1.1.x anterior a 1.1.2 permite a atacantes remotos tener un impacto no especificado a través de un gran número de canales en un archivo AAC, lo que desencadena un acceso fuera de limites... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=47e462eecc0a47ad40f59376199f93f227e21d13 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 55EXPL: 0CVE-2013-0850 – Debian Security Advisory 2793-1
https://notcve.org/view.php?id=CVE-2013-0850
11 Nov 2013 — The decode_slice_header function in libavcodec/h264.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted H.264 data, which triggers an out-of-bounds array access. La función decode_slice_header en libavcodec/h264.c en FFmpeg anteriores a 1.1 permite a atacantes remotos tener un impacto no especificado a través de datos H.264 manipulados, lo cual lanza un acceso a array fuera de límites. Several security issues have been corrected in multiple demuxers and decoders of the l... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=d6c184880ee2e09fd68c0ae217173832cee5afc1 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •