CVSS: 10.0EPSS: 0%CPEs: 68EXPL: 0CVE-2012-2789 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-2789
10 Sep 2012 — Unspecified vulnerability in the avi_read_packet function in libavformat/avidec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to a large number of vector coded coefficients (num_vec_coeffs). Una vulnerabilidad no especificada en la función avi_read_packet en libavformat/avidec.c en FFmpeg antes de v0.11 tiene un impacto y vectores de ataque desconocidos. Se trata de un problema relacionado con un número demasiado grande de coefic... • http://ffmpeg.org/security.html •
CVSS: 10.0EPSS: 1%CPEs: 68EXPL: 0CVE-2012-2798 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-2798
10 Sep 2012 — Unspecified vulnerability in the decode_dds1 function in libavcodec/dfa.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to an "out of array write." Una vulnerabilidad no especificada en la función decode_dds1 en libavcodec/dfa.c en FFmpeg antes de v0.11 tiene un impacto y vectores de ataque desconocidos. Se trata de un problema relacionado con una "escritura fuera de array". It was discovered that Libav incorrectly handled certain ... • http://ffmpeg.org/security.html •
CVSS: 10.0EPSS: 1%CPEs: 69EXPL: 0CVE-2012-2783 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-2783
10 Sep 2012 — Unspecified vulnerability in libavcodec/vp56.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, has unknown impact and attack vectors, related to "freeing the returned frame." Una vulnerabilidad no especificada en libavcodec/vp56.c en FFmpeg antes de v0.11 tiene un impacto y vectores de ataque desconocidos. Se trata de un problema relacionado con la "liberación del marco regresado". It was discovered that FFmpeg incorrectly handled certain malformed media files. If a user were tri... • http://ffmpeg.org/security.html •
CVSS: 10.0EPSS: 0%CPEs: 69EXPL: 0CVE-2012-2791 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-2791
10 Sep 2012 — Multiple unspecified vulnerabilities in the (1) decode_band_hdr function in indeo4.c and (2) ff_ivi_decode_blocks function in ivi_common.c in libavcodec/ in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, have unknown impact and attack vectors, related to the "transform size." Múltiples vulnerabilidades no especificadas en las funciones (1) decode_band_hdr indeo4.c y (2) ivi_common.c ff_ivi_decode_blocks en ivi_common.c in libavcodec in FFmpeg antes de v0.11 tienen un impacto y vect... • http://ffmpeg.org/security.html •
CVSS: 10.0EPSS: 1%CPEs: 68EXPL: 0CVE-2012-2777 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-2777
10 Sep 2012 — Unspecified vulnerability in the decode_pic function in libavcodec/cavsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing in CAVS," a different vulnerability than CVE-2012-2784. Vulnerabilidad no especificada en la función decode_pic en libavcodec/cavsdec.c en FFmpeg anterior a v0.11 tiene un impacto desconocido y vectores de ataque, relacionado con "width/height cambiando en CAVS", una vulnerabilidad dif... • http://ffmpeg.org/security.html •
CVSS: 10.0EPSS: 0%CPEs: 68EXPL: 0CVE-2012-2800 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-2800
10 Sep 2012 — Unspecified vulnerability in the ff_ivi_process_empty_tile function in libavcodec/ivi_common.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors in which the "tile size ... mismatches parameters" and triggers "writing into a too small array." Una vulnerabilidad no especificada en la función ff_ivi_process_empty_tile en libavcodec/ivi_common.c en FFmpeg antes de v0.11 tiene un impacto y vectores de ataque desconocidos en los que "el tamaño del c... • http://ffmpeg.org/security.html •
CVSS: 8.8EPSS: 2%CPEs: 38EXPL: 0CVE-2012-0851 – Gentoo Linux Security Advisory 201210-06
https://notcve.org/view.php?id=CVE-2012-0851
14 Jun 2012 — The ff_h264_decode_seq_parameter_set function in h264_ps.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted H.264 file, related to the chroma_format_idc value. La función ff_h264_decode_seq_parameter_set en h264_ps.c en libavcodec en FFmpeg antes de v0.9.1 y en Libav v0.5.x antes de v0.5.9, v0.6.x antes ... • http://ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 2%CPEs: 37EXPL: 0CVE-2011-3951 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2011-3951
14 Jun 2012 — The dpcm_decode_frame function in dpcm.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted stereo stream in a media file. La función dpcm_decode_frame en dpcm.c en libavcodec de FFmpeg antes de v0.10 y en Libav v0.5.x antes de v0.5.9, v0.6.x antes de v0.6.6, v0.7.x antes de v0.7.6 y v0.8.x antes de v0.8.1 ... • http://ffmpeg.org • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 62EXPL: 0CVE-2011-3952 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2011-3952
14 Jun 2012 — The decode_init function in kmvc.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a large palette size in a KMVC encoded file. La función decode_init en kmvc.c en libavcodec de FFmpeg antes de v0.10 y en Libav v0.5.x antes de v0.5.9, v0.6.x antes de v0.6.6, v0.7.x antes de v0.7.6, y v0.8.x antes de v0.8.1 permite... • http://ffmpeg.org • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 2%CPEs: 38EXPL: 0CVE-2012-0852 – Gentoo Linux Security Advisory 201210-06
https://notcve.org/view.php?id=CVE-2012-0852
14 Jun 2012 — The adpcm_decode_frame function in adpcm.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an ADPCM file with the number of channels not equal to two. La función adpcm_decode_frame en adpcm.c en libavcodec de FFmpeg antes en v0.9.1 y v0.5.x antes en Libav v0.5.9, v0.6.x antes de v0.6.6, v0.7.x antes de v0.7.6, y ... • http://ffmpeg.org/security.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •