CVSS: 10.0EPSS: 0%CPEs: 68EXPL: 0CVE-2012-2798 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-2798
10 Sep 2012 — Unspecified vulnerability in the decode_dds1 function in libavcodec/dfa.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to an "out of array write." Una vulnerabilidad no especificada en la función decode_dds1 en libavcodec/dfa.c en FFmpeg antes de v0.11 tiene un impacto y vectores de ataque desconocidos. Se trata de un problema relacionado con una "escritura fuera de array". Multiple vulnerabilities were found in FFmpeg, the worst ... • http://ffmpeg.org/security.html •
CVSS: 10.0EPSS: 0%CPEs: 68EXPL: 0CVE-2012-2800 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-2800
10 Sep 2012 — Unspecified vulnerability in the ff_ivi_process_empty_tile function in libavcodec/ivi_common.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors in which the "tile size ... mismatches parameters" and triggers "writing into a too small array." Una vulnerabilidad no especificada en la función ff_ivi_process_empty_tile en libavcodec/ivi_common.c en FFmpeg antes de v0.11 tiene un impacto y vectores de ataque desconocidos en los que "el tamaño del c... • http://ffmpeg.org/security.html •
CVSS: 10.0EPSS: 0%CPEs: 68EXPL: 0CVE-2012-2801 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-2801
10 Sep 2012 — Unspecified vulnerability in libavcodec/avs.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to dimensions and "out of array writes." Vulnerabilidad no especificada en libavcodec/avs.c en FFmpeg antes de v0.11 tiene un impacto desconocido y vectores de ataque, en relación a las dimensiones y "escrituras fuera de la matriz" Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-a... • http://ffmpeg.org/security.html •
CVSS: 10.0EPSS: 0%CPEs: 59EXPL: 0CVE-2012-2802 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-2802
10 Sep 2012 — Unspecified vulnerability in the ac3_decode_frame function in libavcodec/ac3dec.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.4 has unknown impact and attack vectors, related to the "number of output channels" and "out of array writes." Una vulnerabilidad no especificada en la función ac3_decode_frame en libavcodec/ac3dec.c en FFmpeg antes de v0.11 tiene un impacto y vectores de ataque desconocidos. Se trata de un problema relacionado con el "número de canales de salida" y una "escritura fuera de array... • http://ffmpeg.org/security.html •
CVSS: 10.0EPSS: 0%CPEs: 69EXPL: 0CVE-2012-2803 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-2803
10 Sep 2012 — Double free vulnerability in the mpeg_decode_frame function in libavcodec/mpeg12.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, has unknown impact and attack vectors, related to resetting the data size value. Una vulnerabilidad de doble liberación en la función mpeg_decode_frame de libavcodec/mpeg12.c en FFmpeg antes de v0.11 tiene un impacto y vectores de ataque desconocidos. Se trata de un problema relacionado con el cambio del valor del tamaño de los datos Multiple vulnerab... • http://ffmpeg.org/security.html • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 0%CPEs: 60EXPL: 0CVE-2012-2804 – Gentoo Linux Security Advisory 201406-28
https://notcve.org/view.php?id=CVE-2012-2804
10 Sep 2012 — Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.5 has unknown impact and attack vectors, related to "reallocation code" and the luma height and width. Una vulnerabilidad no especificada en libavcodec/indeo3.c en FFmpeg antes de v0.11 tiene un impacto y vectores de ataque desconocidos, relacionados con una "reasignación de código" y la altura y anchura del plano 'luma' o de luminancia. Multiple vulnerabilities were found in FFmpeg, the worst of which might en... • http://ffmpeg.org/security.html •
CVSS: 6.5EPSS: 1%CPEs: 37EXPL: 0CVE-2011-4353 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2011-4353
20 Aug 2012 — The (1) av_image_fill_pointers, (2) vp5_parse_coeff, and (3) vp6_parse_coeff functions in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allow remote attackers to cause a denial of service (out-of-bounds read) via a crafted VP5 or VP6 stream. Las funciones (1) av_image_fill_pointers, (2) vp5_parse_coeff, y (3) vp6_parse_coeff en FFmpeg v0.5.x anterior a v0.5.7, v0.6.x anterior a v0.6.4, v0... • http://ffmpeg.org • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 2%CPEs: 40EXPL: 0CVE-2011-3945 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2011-3945
20 Aug 2012 — The decode_frame function in the KVG1 decoder (kgv1dec.c) in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted media file. La función decode_frame en el decodificador KVG1 (kgv1dec.c) en libavcodec en FFmpeg v0.7.x anterior a v0.7.12 y v0.8.x anterior a v0.8.11, y en Libav v0.5.x anterio... • http://ffmpeg.org • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 1%CPEs: 37EXPL: 0CVE-2011-4579
https://notcve.org/view.php?id=CVE-2011-4579
20 Aug 2012 — The svq1_decode_frame function in the SVQ1 decoder (svq1dec.c) in libavcodec in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allows remote attackers to cause a denial of service (memory corruption) via a crafted SVQ1 stream, related to "dimensions changed." La función svq1_decode_frame en el decodificador SVQ1 (svq1dec.c) en libavcodec en FFmpeg v0.5.x anterior a v0.5.7, v0.6.x anterior ... • http://ffmpeg.org • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 2%CPEs: 40EXPL: 0CVE-2011-4364 – Gentoo Linux Security Advisory 201310-12
https://notcve.org/view.php?id=CVE-2011-4364
20 Aug 2012 — Buffer overflow in the Sierra VMD decoder in libavcodec in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9 and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted VMD file, related to corrupted streams. Desbordamiento de búfer en el decodificador Sierra VMD en libavcodec en FFmpeg v0.5.x anterior a v0.5.7, v0.6.x anterior a v0.6.4, v0.7.... • http://ffmpeg.org • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •