CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 0CVE-2016-6920 – ffmpeg 3.1.2 Heap Overflow
https://notcve.org/view.php?id=CVE-2016-6920
07 Sep 2016 — Heap-based buffer overflow in the decode_block function in libavcodec/exr.c in FFmpeg before 3.1.3 allows remote attackers to cause a denial of service (application crash) via vectors involving tile positions. Desbordamiento de búfer basado en memoria dinámica en la función decode_block en libavcodec/exr.c en FFmpeg en versiones anteriores a 3.1.3 permite a atacantes provocar una denegación de servicio (caída de la aplicación) a través de vectores que implican posiciones de baldosa. ffmpeg versions 3.1.2 an... • http://git.videolan.org/gitweb.cgi/ffmpeg.git/?a=commit%3Bh=79f52a0dbd484aad111e4bf4a4f7047c7ceb6137 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2016-2326 – Gentoo Linux Security Advisory 201705-08
https://notcve.org/view.php?id=CVE-2016-2326
12 Feb 2016 — Integer overflow in the asf_write_packet function in libavformat/asfenc.c in FFmpeg before 2.8.5 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PTS (aka presentation timestamp) value in a .mov file. Desbordamiento de entero en la función asf_write_packet en libavformat/asfenc.c en FFmpeg en versiones anteriores a 2.8.5 permite a atacantes remotos provocar una denegación de servicio o posiblemente tener otro impacto no especificado a través de un ... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=7c0b84d89911b2035161f5ef51aafbfcc84aa9e2 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-2327 – Gentoo Linux Security Advisory 201606-09
https://notcve.org/view.php?id=CVE-2016-2327
12 Feb 2016 — libavcodec/pngenc.c in FFmpeg before 2.8.5 uses incorrect line sizes in certain row calculations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted .avi file, related to the apng_encode_frame and encode_apng functions. libavcodec/pngenc.c en FFmpeg en versiones anteriores a 2.8.5 utiliza tamaños de línea incorrectos en ciertos cálculos de fila, lo que podría permitir a atacantes remotos provocar una denegación de s... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=7ec9c5ce8a753175244da971fed9f1e25aef7971 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-2328 – Gentoo Linux Security Advisory 201606-09
https://notcve.org/view.php?id=CVE-2016-2328
12 Feb 2016 — libswscale/swscale_unscaled.c in FFmpeg before 2.8.6 does not validate certain height values, which allows remote attackers to cause a denial of service (out-of-bounds array read access) or possibly have unspecified other impact via a crafted .cine file, related to the bayer_to_rgb24_wrapper and bayer_to_yv12_wrapper functions. libswscale/swscale_unscaled.c en FFmpeg en versiones anteriores a 2.8.6 no valida correctamente valores de anchura, lo que podría permitir a atacantes remotos provocar una denegación... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=757248ea3cd917a7755cb15f817a9b1f15578718 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2016-2329 – Gentoo Linux Security Advisory 201606-09
https://notcve.org/view.php?id=CVE-2016-2329
12 Feb 2016 — libavcodec/tiff.c in FFmpeg before 2.8.6 does not properly validate RowsPerStrip values and YCbCr chrominance subsampling factors, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted TIFF file, related to the tiff_decode_tag and decode_frame functions. libavcodec/tiff.c en FFmpeg en versiones anteriores a 2.8.6 no valida correctamente valores RowsPerStrip y factores de submuestreo de crominancia YCbCr, lo que podría ... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=89f464e9c229006e16f6bb5403c5529fdd0a9edd • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2016-2330 – Gentoo Linux Security Advisory 201606-09
https://notcve.org/view.php?id=CVE-2016-2330
12 Feb 2016 — libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer size, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted .tga file, related to the gif_image_write_image, gif_encode_init, and gif_encode_close functions. libavcodec/gif.c en FFmpeg en versiones anteriores a 2.8.6 no calcula correctamente un tamaño de buffer, lo que podría permitir a atacantes remotos provocar una denegación de servicio (ac... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=03d83ba34b2070878909eae18dfac0f519503777 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-2213 – Gentoo Linux Security Advisory 201606-09
https://notcve.org/view.php?id=CVE-2016-2213
03 Feb 2016 — The jpeg2000_decode_tile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.6 allows remote attackers to cause a denial of service (out-of-bounds array read access) via crafted JPEG 2000 data. La función jpeg2000_decode_tile en libavcodec/jpeg2000dec.c en FFmpeg en versiones anteriores a 2.8.6 permite a atacantes remotos causar una denegación de servicio (acceso a lectura de array fuera de rango) a través de datos JPEG 2000 manipulados. Multiple vulnerabilities have been found in FFmpeg, the worst of... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=0aada30510d809bccfd539a90ea37b61188f2cb4 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 57%CPEs: 84EXPL: 2CVE-2016-1897 – Gentoo Linux Security Advisory 201705-08
https://notcve.org/view.php?id=CVE-2016-1897
15 Jan 2016 — FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains the first line of a local file. FFmpeg 2.x permite a atacantes remotos llevar a cabo ataques de origen cruzado y leer archivos arbitrarios usando el protocolo concat en un archivo HTTP Live Streaming (HLS) M3U8, dando lugar a una petición HTTP externa en la que la cadena URL con... • http://habrahabr.ru/company/mailru/blog/274855 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 33%CPEs: 84EXPL: 1CVE-2016-1898 – Gentoo Linux Security Advisory 201705-08
https://notcve.org/view.php?id=CVE-2016-1898
15 Jan 2016 — FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains an arbitrary line of a local file. FFmpeg 2.x permite a atacantes remotos llevar a cabo ataques de origen cruzado y leer archivos arbitrarios usando el protocolo subfile en un archivo HTTP Live Streaming (HLS) M3U8, dando lugar a una petición HTTP externa en la que la cadena UR... • http://habrahabr.ru/company/mailru/blog/274855 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.3EPSS: 0%CPEs: 1EXPL: 0CVE-2015-8661
https://notcve.org/view.php?id=CVE-2015-8661
24 Dec 2015 — The h264_slice_header_init function in libavcodec/h264_slice.c in FFmpeg before 2.8.3 does not validate the relationship between the number of threads and the number of slices, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted H.264 data. La función h264_slice_header_init en libavcodec/h264_slice.c en FFmpeg en versiones anteriores a la 2.8.3 no valida la relación entre el número de hilos y el número de fracciones, l... • http://git.videolan.org/?p=ffmpeg.git%3Ba=commit%3Bh=4ea4d2f438c9a7eba37980c9a87be4b34943e4d5 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •