CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-6671
https://notcve.org/view.php?id=CVE-2016-6671
23 Dec 2016 — The raw_decode function in libavcodec/rawdec.c in FFmpeg before 3.1.2 allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a crafted SWF file. La función raw_decode en libavcodec/rawdec.c en FFmpeg en versiones anteriores a 3.1.2 permite a atacantes remotos provocar una denegación de servicio (corrupción de memoria) o ejecutar un código arbitrario a través del archivo manipulado SWF. • http://www.openwall.com/lists/oss-security/2016/08/12/6 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-6881
https://notcve.org/view.php?id=CVE-2016-6881
23 Dec 2016 — The zlib_refill function in libavformat/swfdec.c in FFmpeg before 3.1.3 allows remote attackers to cause an infinite loop denial of service via a crafted SWF file. La función zlib_refill en libavformat/swfdec.c en FFmpeg en versiones anteriroes a 3.1.3 permite a atacantes remotos provocar una denegación de servicio de bucle infinito a través de un archivo manipulado SWF. • http://www.openwall.com/lists/oss-security/2016/09/26/6 • CWE-399: Resource Management Errors •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-8595
https://notcve.org/view.php?id=CVE-2016-8595
23 Dec 2016 — The gsm_parse function in libavcodec/gsm_parser.c in FFmpeg before 3.1.5 allows remote attackers to cause a denial of service (assert fault) via a crafted AVI file. La función gsm_parse en libavcodec/gsm_parser.c en FFmpeg en versiones anteriores a 3.1.5 permite a atacantes remotos provocar una denegación de servicio (fallo de asertividad) a través de un archivo AVI manipulado. • http://www.openwall.com/lists/oss-security/2016/12/08/2 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7785 – Gentoo Linux Security Advisory 201701-71
https://notcve.org/view.php?id=CVE-2016-7785
23 Dec 2016 — The avi_read_seek function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (assert fault) via a crafted AVI file. La función avi_read_seek en libavformat/avidec.c en FFmpeg en versiones anteriores a 3.1.4 permite a atacantes remotos provocar una denegación de servicio (fallo de asertividad) a través de un archivo AVI manipulado. Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service co... • http://www.openwall.com/lists/oss-security/2016/10/08/1 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7905 – Gentoo Linux Security Advisory 201701-71
https://notcve.org/view.php?id=CVE-2016-7905
23 Dec 2016 — The read_gab2_sub function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (NULL pointer used) via a crafted AVI file. La función read_gab2_sub function en libavformat/avidec.c en FFmpeg en versiones anteriores a 3.1.4 permite a atacantes remotos provocar una denegación de servicio (puntero NULL utilizado) a través de un archivo AVI manipulado. Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Deni... • http://www.openwall.com/lists/oss-security/2016/10/08/1 • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7450 – Gentoo Linux Security Advisory 201701-71
https://notcve.org/view.php?id=CVE-2016-7450
23 Dec 2016 — The ff_log2_16bit_c function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file. La función ff_log2_16bit_c en libavutil/intmath.h en FFmpeg en versiones anteriores a 3.1.4 es vulnerable a una lectura de memoria fuera de límites cuando codifica un archivo AIFF malformado. Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition. Versions less than 2.8... • http://www.openwall.com/lists/oss-security/2016/10/08/1 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7502 – Gentoo Linux Security Advisory 201701-71
https://notcve.org/view.php?id=CVE-2016-7502
23 Dec 2016 — The cavs_idct8_add_c function in libavcodec/cavsdsp.c in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when decoding with cavs_decode. La función cavs_idct8_add_c en libavcodec/cavsdsp.c en FFmpeg en versioenes anteriores a 3.1.4 es vulnerable a una lectura de memoria fuera de límites cuando decodifica cavs_decode. Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition. Versions less than 2.8.10 are affecte... • http://www.openwall.com/lists/oss-security/2016/10/08/1 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7555 – Gentoo Linux Security Advisory 201701-71
https://notcve.org/view.php?id=CVE-2016-7555
23 Dec 2016 — The avi_read_header function in libavformat/avidec.c in FFmpeg before 3.1.4 is vulnerable to memory leak when decoding an AVI file that has a crafted "strh" structure. La función avi_read_header en libavformat/avidec.c en FFmpeg en versiones anteriores a 3.1.4 es vulnerable a una perdida de memoria cuando decodifica un archivo AVI que tiene uns estructura "strh" manipulada. Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service conditio... • http://www.openwall.com/lists/oss-security/2016/10/08/1 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7562 – Gentoo Linux Security Advisory 201701-71
https://notcve.org/view.php?id=CVE-2016-7562
23 Dec 2016 — The ff_draw_pc_font function in libavcodec/cga_data.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (buffer overflow) via a crafted AVI file. La función ff_draw_pc_font en libavcodec/cga_data.c en FFmpeg en versiones anteriores a 3.1.4 permite a atacantes remotos provocar una denegación de servicio (desbordamiento de búfer) a través de un archivo AVI manipulado. Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial o... • http://www.openwall.com/lists/oss-security/2016/10/08/1 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7122 – Gentoo Linux Security Advisory 201701-71
https://notcve.org/view.php?id=CVE-2016-7122
23 Dec 2016 — The avi_read_nikon function in libavformat/avidec.c in FFmpeg before 3.1.4 is vulnerable to infinite loop when it decodes an AVI file that has a crafted 'nctg' structure. La función avi_read_nikon en libavformat/avidec.c en FFmpeg en versiones anteriores a 3.1.4 es vulnerable al bucle infinito cuando decodifica un archivo AVI que tiene una estructura 'nctg' manipulada. Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition. Ve... • http://www.openwall.com/lists/oss-security/2016/10/08/1 • CWE-399: Resource Management Errors •