CVSS: 8.8EPSS: 0%CPEs: 51EXPL: 0CVE-2011-3950 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2011-3950
25 Oct 2013 — The dirac_decode_data_unit function in libavcodec/diracdec.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via a crafted value in the reference pictures number. La función dirac_decode_data_unit en libavcodec/diracdec.c en FFmpeg anterior a v0.10 permite a atacantes remotos tener un impacto no especificado a través de un valor manipulado en el número de referencia de las imágenes. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=ddf0c1d86ad8e1df5ab3265206aef493a1bdc813 •
CVSS: 8.8EPSS: 0%CPEs: 51EXPL: 0CVE-2011-3935 – Debian Security Advisory 3003-1
https://notcve.org/view.php?id=CVE-2011-3935
25 Oct 2013 — The codec_get_buffer function in ffmpeg.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via vectors related to a crafted image size. La función codec_get_buffer en ffmpeg.c en FFmpeg anterior a la versión 0.10 permite a atacantes remotos tener un impacto no especificado a través de vectores relacionados con el tamaño de una imagen manipulada. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbit... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=668494acd8b20f974c7722895d4a6a14c1005f1e •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-2773 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2012-2773
25 Oct 2013 — Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2778, CVE-2012-2780, and CVE-2012-2781. Una vulnerabilidad sin especificar en FFmpeg en versiones anteriores a la 0.10.3 tiene un impacto y vectores de ataque desconocidos. Esta vulnerabilidad es diferente a CVE-2012-2771, CVE-2012-2778, CVE-2012-2780, y CVE-2012-2781. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to... • http://www.securityfocus.com/bid/100274 •
CVSS: 9.1EPSS: 0%CPEs: 51EXPL: 0CVE-2011-3946 – Debian Security Advisory 3003-1
https://notcve.org/view.php?id=CVE-2011-3946
25 Oct 2013 — The ff_h264_decode_sei function in libavcodec/h264_sei.c in FFmpeg before 0.10 allows remote attackers to have an unspecified impact via crafted Supplemental enhancement information (SEI) data, which triggers an infinite loop. La función ff_h264_decode_sei en libavcodec/h264_sei.c en FFmpeg anteriores a 0.10 permite a atacantes remotos tener un impacto no especificado a través datos "Supplemental enhancement information" (SEI), lo que dispara un bucle infinito. Multiple vulnerabilities were found in FFmpeg,... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=9decfc17bb76da34734296048d390b176abf404c • CWE-399: Resource Management Errors •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-2781 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2012-2781
25 Oct 2013 — Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, and CVE-2012-2780. Una vulnerabilidad sin especificar en FFmpeg en versiones anteriores a la 0.10.3 tiene un impacto y vectores de ataque desconocidos. Esta vulnerabilidad es diferente a CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, y CVE-2012-2780. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to... • http://www.securityfocus.com/bid/100250 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-2778 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2012-2778
25 Oct 2013 — Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2780, and CVE-2012-2781. Una vulnerabilidad sin especificar en FFmpeg en versiones anteriores a la 0.10.3 tiene un impacto y vectores de ataque desconocidos. Esta vulnerabilidad es diferente a CVE-2012-2771, CVE-2012-2773, CVE-2012-2780, y CVE-2012-2781. Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to... • http://www.securityfocus.com/bid/100273 •
CVSS: 9.3EPSS: 1%CPEs: 1EXPL: 0CVE-2013-3674 – Debian Security Advisory 3003-1
https://notcve.org/view.php?id=CVE-2013-3674
10 Jun 2013 — The cdg_decode_frame function in cdgraphics.c in libavcodec in FFmpeg before 1.2.1 does not validate the presence of non-header data in a buffer, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted CD Graphics Video data. La función cdg_decode_frame en cdgraphics.c en libavcodec en FFmpeg anterior a 1.2.1 no valida la presencia de datos non-header en el búfer, lo que permite a atacantes remotos provocar una denegación de servicio (acceso ... • http://ffmpeg.org/security.html • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2013-3671 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2013-3671
10 Jun 2013 — The format_line function in log.c in libavutil in FFmpeg before 1.2.1 uses inapplicable offset data during a certain category calculation, which allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via crafted data that triggers a log message. La función format_line en log.c en libavutil en FFmpeg anterior a 1.2.1 utiliza datos offset inaplicables durante el cálculo de determinadas categorías, lo que permite a atacantes remotos provocar una denegación de s... • http://ffmpeg.org/security.html • CWE-189: Numeric Errors •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2013-3673 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2013-3673
10 Jun 2013 — The gif_decode_frame function in gifdec.c in libavcodec in FFmpeg before 1.2.1 does not properly manage the disposal methods of frames, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted GIF data. La función gif_decode_frame en gifdec.c en libavcodec en FFmpeg anterior a 1.2.1 no administra adecuadamente la disposición de los métodos de los frames, lo que permite a atacantes remotos provocar una denegación de servicio (acceso a array fue... • http://ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2013-3670 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2013-3670
10 Jun 2013 — The rle_unpack function in vmdav.c in libavcodec in FFmpeg git 20130328 through 20130501 does not properly use the bytestream2 API, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted RLE data. NOTE: the vendor has listed this as an issue fixed in 1.2.1, but the issue is actually in new code that was not shipped with the 1.2.1 release or any earlier release. La función rle_unpack en vmdav.c en libavcodec en FFmpeg git 20130328 a la 201305... • http://ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •