CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2018-13302
https://notcve.org/view.php?id=CVE-2018-13302
In FFmpeg 4.0.1, improper handling of frame types (other than EAC3_FRAME_TYPE_INDEPENDENT) that have multiple independent substreams in the handle_eac3 function in libavformat/movenc.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to a denial of service or possibly unspecified other impact. En FFmpeg 4.0.1, la gestión incorrecta de tipos de frame (diferentes a EAC3_FRAME_TYPE_INDEPENDENT) que tienen múltiples subcadenas independiented en la función avpriv_request_sample en la función handle_eac3 en libavformat/movenc.c podría desencadenar un acceso fuera de array al convertir un archivo AVI manipulado a MPEG4, lo que conduce a una denegación de servicio (DoS) y, posiblemente, a otro tipo de impacto sin especificar. • http://www.securityfocus.com/bid/104675 https://github.com/FFmpeg/FFmpeg/commit/ed22dc22216f74c75ee7901f82649e1ff725ba50 https://www.debian.org/security/2018/dsa-4249 • CWE-129: Improper Validation of Array Index •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2018-12458
https://notcve.org/view.php?id=CVE-2018-12458
An improper integer type in the mpeg4_encode_gop_header function in libavcodec/mpeg4videoenc.c in FFmpeg 2.8 and 4.0 may trigger an assertion violation while converting a crafted AVI file to MPEG4, leading to a denial of service. Un tipo de entero incorrecto en la función mpeg4_encode_gop_header en libavcodec/mpeg4videoenc.c en FFmpeg 2.8 y 4.0 podría desencadenar una violación de aserción al convertir un archivo AVI manipulado a MPEG4, lo que conduce a una denegación de servicio • https://github.com/FFmpeg/FFmpeg/commit/6bbef938839adc55e8e048bc9cc2e0fafe2064df https://github.com/FFmpeg/FFmpeg/commit/e1182fac1afba92a4975917823a5f644bee7e6e8 https://www.debian.org/security/2018/dsa-4249 • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-12459
https://notcve.org/view.php?id=CVE-2018-12459
An inconsistent bits-per-sample value in the ff_mpeg4_decode_picture_header function in libavcodec/mpeg4videodec.c in FFmpeg 4.0 may trigger an assertion violation while converting a crafted AVI file to MPEG4, leading to a denial of service. Un valor bits-per-sample inconsistente en la función ff_mpeg4_decode_picture_header en libavcodec/mpeg4videodec.c en FFmpeg 4.0 podría desencadenar una violación de aserción al convertir un archivo AVI manipulado a MPEG4, lo que conduce a una denegación de servicio. • https://github.com/FFmpeg/FFmpeg/commit/2fc108f60f98cd00813418a8754a46476b404a3c • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-12460
https://notcve.org/view.php?id=CVE-2018-12460
libavcodec in FFmpeg 4.0 may trigger a NULL pointer dereference if the studio profile is incorrectly detected while converting a crafted AVI file to MPEG4, leading to a denial of service, related to idctdsp.c and mpegvideo.c. libavcodec en FFmpeg 4.0 podría desencadenar una desreferencia de puntero NULL si el perfil studio se detecta de forma incorrecta al convertir un archivo AVI manipulado a MPEG4, lo que conduce a una denegación de servicio (DoS). Esto está relacionado con idctdsp.c y mpegvideo.c. • https://github.com/FFmpeg/FFmpeg/commit/b3332a182f8ba33a34542e4a0370f38b914ccf7d • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 1%CPEs: 5EXPL: 0CVE-2005-4048
https://notcve.org/view.php?id=CVE-2005-4048
Heap-based buffer overflow in the avcodec_default_get_buffer function (utils.c) in FFmpeg libavcodec 0.4.9-pre1 and earlier, as used in products such as (1) mplayer, (2) xine-lib, (3) Xmovie, and (4) GStreamer, allows remote attackers to execute arbitrary commands via small PNG images with palettes. • http://article.gmane.org/gmane.comp.video.ffmpeg.devel/26558 http://cvs.freedesktop.org/gstreamer/gst-ffmpeg/ChangeLog?rev=1.239&view=markup http://secunia.com/advisories/17892 http://secunia.com/advisories/18066 http://secunia.com/advisories/18087 http://secunia.com/advisories/18107 http://secunia.com/advisories/18400 http://secunia.com/advisories/18739 http://secunia.com/advisories/18746 http://secunia.com/advisories/19114 http://secunia.com/advisories/19192 http://secunia&# • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •