CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-125008 – FFmpeg oggparsevorbis.c vorbis_header memory corruption
https://notcve.org/view.php?id=CVE-2014-125008
18 Jun 2022 — A vulnerability classified as problematic has been found in FFmpeg 2.0. Affected is the function vorbis_header of the file libavformat/oggparsevorbis.c. The manipulation leads to memory corruption. It is possible to launch the attack remotely. It is recommended to apply a patch to fix this issue. • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=f5d1d1e4667ba346ea7e0f97e6d2756bc9d4abde • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-125007 – FFmpeg hevcpred_template.c intra_pred memory corruption
https://notcve.org/view.php?id=CVE-2014-125007
18 Jun 2022 — A vulnerability classified as problematic was found in FFmpeg 2.0. Affected by this vulnerability is the function intra_pred of the file libavcodec/hevcpred_template.c. The manipulation leads to memory corruption. The attack can be launched remotely. It is recommended to apply a patch to fix this issue. • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=dfefc9097e9b4bb20442e65454a40043bd189b3d • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-125006 – FFmpeg h264.c output_frame memory corruption
https://notcve.org/view.php?id=CVE-2014-125006
18 Jun 2022 — A vulnerability, which was classified as problematic, has been found in FFmpeg 2.0. Affected by this issue is the function output_frame of the file libavcodec/h264.c. The manipulation leads to memory corruption. The attack may be launched remotely. It is recommended to apply a patch to fix this issue. • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=8c55ff393340998faae887dfac19e7ef128e1e58 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-125005 – FFmpeg mpeg4videodec.c decode_vol_header memory corruption
https://notcve.org/view.php?id=CVE-2014-125005
18 Jun 2022 — A vulnerability, which was classified as problematic, was found in FFmpeg 2.0. This affects the function decode_vol_header of the file libavcodec/mpeg4videodec.c. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. It is recommended to apply a patch to fix this issue. • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=3edc3b159503d512c919b3d5902f7026e961823a • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-125004 – FFmpeg vmnc.c decode_hextile memory corruption
https://notcve.org/view.php?id=CVE-2014-125004
18 Jun 2022 — A vulnerability has been found in FFmpeg 2.0 and classified as problematic. This vulnerability affects the function decode_hextile of the file libavcodec/vmnc.c. The manipulation leads to memory corruption. The attack can be initiated remotely. It is recommended to apply a patch to fix this issue. • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=6ba02602aa7fc7d38db582e75b8b093fb3c1608d • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-125003 – FFmpeg jpeg2000dec.c get_siz memory corruption
https://notcve.org/view.php?id=CVE-2014-125003
18 Jun 2022 — A vulnerability was found in FFmpeg 2.0 and classified as problematic. This issue affects the function get_siz of the file libavcodec/jpeg2000dec.c. The manipulation leads to memory corruption. The attack may be initiated remotely. It is recommended to apply a patch to fix this issue. • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=8001e9f7d17e90b4b0898ba64e3b8bbd716c513c • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2014-125002 – FFmpeg dnxhdenc.c dnxhd_init_rc memory corruption
https://notcve.org/view.php?id=CVE-2014-125002
18 Jun 2022 — A vulnerability was found in FFmpeg 2.0. It has been classified as problematic. Affected is the function dnxhd_init_rc of the file libavcodec/dnxhdenc.c. The manipulation leads to memory corruption. It is possible to launch the attack remotely. • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=f1caaa1c61310beba705957e6366f0392a0b005b • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2022-1475 – Gentoo Linux Security Advisory 202312-14
https://notcve.org/view.php?id=CVE-2022-1475
02 May 2022 — An integer overflow vulnerability was found in FFmpeg versions before 4.4.2 and before 5.0.1 in g729_parse() in llibavcodec/g729_parser.c when processing a specially crafted file. Se ha encontrado una vulnerabilidad de desbordamiento de enteros en las versiones de FFmpeg anteriores a la 4.4.2 y anteriores a la 5.0.1 en g729_parse() en llibavcodec/g729_parser.c al procesar un archivo especialmente diseñado It was discovered that FFmpeg would attempt to divide by zero when using Linear Predictive Coding or AA... • https://bugzilla.redhat.com/show_bug.cgi?id=2076764 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-23906
https://notcve.org/view.php?id=CVE-2020-23906
10 Nov 2021 — FFmpeg N-98388-g76a3ee996b allows attackers to cause a denial of service (DoS) via a crafted audio file due to insufficient verification of data authenticity. FFmpeg versión N-98388-g76a3ee996b, permite a atacantes causar una denegación de servicio (DoS) por medio de un archivo de audio diseñado debido a una verificación insuficiente de la autenticidad de los datos • https://trac.ffmpeg.org/ticket/8782 • CWE-345: Insufficient Verification of Data Authenticity •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-38093
https://notcve.org/view.php?id=CVE-2021-38093
20 Sep 2021 — Integer Overflow vulnerability in function filter_robert in libavfilter/vf_convolution.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts. Una vulnerabilidad de desbordamiento de enteros en la función filter_robert en el archivo libavfilter/vf_convolution.c en Ffmpeg versión 4.2.1, permite a atacantes causar una Denegación de Servicio u otros impactos no especificados • https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/99f8d32129dd233d4eb2efa44678a0bc44869f23 • CWE-190: Integer Overflow or Wraparound •