CVSS: 9.8EPSS: 1%CPEs: 59EXPL: 0CVE-2013-0866 – Debian Security Advisory 2793-1
https://notcve.org/view.php?id=CVE-2013-0866
11 Nov 2013 — The aac_decode_init function in libavcodec/aacdec.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.2 allows remote attackers to have an unspecified impact via a large number of channels in an AAC file, which triggers an out-of-bounds array access. La función aac_decode_init en libavcodec / aacdec.c en FFmpeg anterior a 1.0.4 y 1.1.x anterior a 1.1.2 permite a atacantes remotos tener un impacto no especificado a través de un gran número de canales en un archivo AAC, lo que desencadena un acceso fuera de limites... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=47e462eecc0a47ad40f59376199f93f227e21d13 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 55EXPL: 0CVE-2013-0853 – Debian Security Advisory 2793-1
https://notcve.org/view.php?id=CVE-2013-0853
11 Nov 2013 — The wavpack_decode_frame function in libavcodec/wavpack.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted WavPack data, which triggers an out-of-bounds array access, possibly due to an off-by-one error. La función wavpack_decode_frame en libavcodec/wavpack.c en FFmpeg anterior a v1.1 permite a atacantes remotods tener un impacto no especificado a través de información WavPack manipulada, lo que desencadena un acceso fuera de limites en un array, posiblemente debido a u... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=be818df547c3b0ae4fadb50fd210139a8636706a • CWE-189: Numeric Errors •
CVSS: 9.3EPSS: 0%CPEs: 55EXPL: 0CVE-2013-0850 – Debian Security Advisory 2793-1
https://notcve.org/view.php?id=CVE-2013-0850
11 Nov 2013 — The decode_slice_header function in libavcodec/h264.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted H.264 data, which triggers an out-of-bounds array access. La función decode_slice_header en libavcodec/h264.c en FFmpeg anteriores a 1.1 permite a atacantes remotos tener un impacto no especificado a través de datos H.264 manipulados, lo cual lanza un acceso a array fuera de límites. Several security issues have been corrected in multiple demuxers and decoders of the l... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=d6c184880ee2e09fd68c0ae217173832cee5afc1 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 51EXPL: 0CVE-2011-3941 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2011-3941
25 Oct 2013 — The decode_mb function in libavcodec/error_resilience.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via vectors related to an uninitialized block index, which triggers an out-of-bounds write. La función decode_mb en el archivo libavcodec/error_resilience.c en FFmpeg anterior a versión 0.10, permite a los atacantes remotos tener un impacto no especificado por medio de vectores relacionados con un índice de bloque no inicializado, que desencadena una escritura fuera de límites.... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=c77be3a35a0160d6af88056b0899f120f2eef38e • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-2780 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2012-2780
25 Oct 2013 — Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, and CVE-2012-2781. Una vulnerabilidad sin especificar en FFmpeg en versiones anteriores a la 0.10.3 tiene un impacto y vectores de ataque desconocidos. Esta vulnerabilidad es diferente a CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, y CVE-2012-2781. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to... • http://www.securityfocus.com/bid/100272 •
CVSS: 8.8EPSS: 0%CPEs: 51EXPL: 0CVE-2011-3949 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2011-3949
25 Oct 2013 — The dirac_unpack_idwt_params function in libavcodec/diracdec.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Dirac data. La función dirac_unpack_idwt_params en libavcodec/diracdec.c de FFmpeg anterior a la versión 0.10 permite a atacantes remotos tener un impacto no especificado a través de datos Dirac. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. Versions less tha... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=e2291ea1534d17306f685b8c8abc8585bbed87bf •
CVSS: 9.8EPSS: 2%CPEs: 40EXPL: 0CVE-2011-4351 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2011-4351
25 Oct 2013 — Buffer overflow in FFmpeg before 0.5.6, 0.6.x before 0.6.4, 0.7.x before 0.7.8, and 0.8.x before 0.8.8 allows remote attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer en FFmpeg anterior a la versión 0.5.6, 0.6.x anterior a 0.6.4, 0.7.x anterior a la versión 0.7.8, y 0.8.x anterior a 0.8.8 permite a atacantes remotos ejecutar código arbitrario a través de vectores sin especificar. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attacker... • http://seclists.org/bugtraq/2011/Nov/145 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-2771 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2012-2771
25 Oct 2013 — Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2773, CVE-2012-2778, CVE-2012-2780, and CVE-2012-2781. Una vulnerabilidad sin especificar en FFmpeg en versiones anteriores a la 0.10.3 tiene un impacto y vectores de ataque desconocidos. Esta vulnerabilidad es diferente a CVE-2012-2773, CVE-2012-2778, CVE-2012-2780, y CVE-2012-2781. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to... • https://www.ffmpeg.org/security.html •
CVSS: 8.8EPSS: 0%CPEs: 51EXPL: 0CVE-2011-3944 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2011-3944
25 Oct 2013 — The smacker_decode_header_tree function in libavcodec/smacker.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Smacker data. La función smacker_decode_header_tree en libavcodec/smacker.c de FFmpeg anterior a la versión 0.10 permite a atacantes remotos tener un impacto no especificado a través de datos Smacker. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. Versions le... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=1285baaab550e3e761590ef6dfb1d9bd9d1332e4 •
CVSS: 8.8EPSS: 0%CPEs: 51EXPL: 0CVE-2011-3934 – Debian Security Advisory 3003-1
https://notcve.org/view.php?id=CVE-2011-3934
25 Oct 2013 — Double free vulnerability in the vp3_update_thread_context function in libavcodec/vp3.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted vp3 data. Vulnerabilidad de doble liberación en la función vp3_update_thread_context en libavcodec/vp3.c de FFmpeg anterior a la versión 0.10, permite a atacantes remotos llevar a cabo un impacto no especificado a través de datos vp3 manipulados. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote att... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=247d30a7dba6684ccce4508424f35fd58465e535 • CWE-399: Resource Management Errors •