CVSS: 10.0EPSS: 1%CPEs: 13EXPL: 0CVE-2014-3984
https://notcve.org/view.php?id=CVE-2014-3984
Multiple unspecified vulnerabilities in Libav before 0.8.12 allow remote attackers to have unknown impact and vectors. Múltiples vulnerabilidades no especificadas en Libav anterior a 0.8.12 permiten a atacantes remotos tener impacto y vectores desconocidos. • http://git.libav.org/?p=libav.git%3Ba=blob%3Bf=Changelog%3Bhb=refs/tags/v0.8.12 http://libav.org/news.html http://secunia.com/advisories/59032 http://secunia.com/advisories/59045 http://www.debian.org/security/2014/dsa-2947 http://www.ubuntu.com/usn/USN-2244-1 •
CVSS: 10.0EPSS: 1%CPEs: 88EXPL: 0CVE-2012-5144
https://notcve.org/view.php?id=CVE-2012-5144
Google Chrome before 23.0.1271.97, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, do not properly perform AAC decoding, which allows remote attackers to cause a denial of service (stack memory corruption) or possibly have unspecified other impact via vectors related to "an off-by-one overwrite when switching to LTP profile from MAIN." Google Chrome antes 23.0.1271.97 no realiza correctamente la decodificación AAC, que permite a atacantes remotos provocar una denegación de servicio (corrupción de pila de memoria) o posiblemente tener un impacto no especificado a través de vectores desconocidos. • http://googlechromereleases.blogspot.com/2012/12/stable-channel-update.html http://libav.org/releases/libav-0.7.7.changelog http://libav.org/releases/libav-0.8.5.changelog http://lists.opensuse.org/opensuse-updates/2012-12/msg00073.html http://www.ubuntu.com/usn/USN-1705-1 https://code.google.com/p/chromium/issues/detail?id=161639 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16007 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 68EXPL: 0CVE-2012-2789
https://notcve.org/view.php?id=CVE-2012-2789
Unspecified vulnerability in the avi_read_packet function in libavformat/avidec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to a large number of vector coded coefficients (num_vec_coeffs). Una vulnerabilidad no especificada en la función avi_read_packet en libavformat/avidec.c en FFmpeg antes de v0.11 tiene un impacto y vectores de ataque desconocidos. Se trata de un problema relacionado con un número demasiado grande de coeficientes de vectores (num_vec_coeffs). • http://ffmpeg.org/security.html http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=97a5addfcf0029d0f5538ed70cb38cae4108a618 http://libav.org/releases/libav-0.7.7.changelog http://libav.org/releases/libav-0.8.4.changelog http://secunia.com/advisories/50468 http://secunia.com/advisories/51257 http://www.mandriva.com/security/advisories?name=MDVSA-2013:079 http://www.openwall.com/lists/oss-security/2012/08/31/3 http://www.openwall.com/lists/oss-security/2012/09/02/4 http •
CVSS: 10.0EPSS: 0%CPEs: 68EXPL: 0CVE-2012-2784
https://notcve.org/view.php?id=CVE-2012-2784
Unspecified vulnerability in the decode_pic function in libavcodec/cavsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing in CAVS," a different vulnerability than CVE-2012-2777. Una vulnerabilidad no especificada en la función decode_pic en libavcodec/cavsdec.c en FFmpeg antes de v0.11 tiene un impacto y vectores de ataque desconocidos. Se trata de un problema relacionado con "el cambio de anchura/altura en CAVS". Es una vulnerabilidad diferente a CVE-2012-2777a. • http://ffmpeg.org/security.html http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=25715064c2ef4978672a91f8c856f3e8809a7c45 http://libav.org/releases/libav-0.7.7.changelog http://libav.org/releases/libav-0.8.4.changelog http://secunia.com/advisories/50468 http://secunia.com/advisories/51257 http://www.mandriva.com/security/advisories?name=MDVSA-2013:079 http://www.openwall.com/lists/oss-security/2012/08/31/3 http://www.openwall.com/lists/oss-security/2012/09/02/4 http •
CVSS: 10.0EPSS: 0%CPEs: 69EXPL: 0CVE-2012-2803
https://notcve.org/view.php?id=CVE-2012-2803
Double free vulnerability in the mpeg_decode_frame function in libavcodec/mpeg12.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, has unknown impact and attack vectors, related to resetting the data size value. Una vulnerabilidad de doble liberación en la función mpeg_decode_frame de libavcodec/mpeg12.c en FFmpeg antes de v0.11 tiene un impacto y vectores de ataque desconocidos. Se trata de un problema relacionado con el cambio del valor del tamaño de los datos • http://ffmpeg.org/security.html http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=951cbea56fdc03ef96d07fbd7e5bed755d42ac8a http://libav.org/releases/libav-0.7.7.changelog http://libav.org/releases/libav-0.8.5.changelog http://secunia.com/advisories/50468 http://www.openwall.com/lists/oss-security/2012/08/31/3 http://www.openwall.com/lists/oss-security/2012/09/02/4 http://www.securityfocus.com/bid/55355 http://www.ubuntu.com/usn/USN-1705-1 http://www.ubu • CWE-399: Resource Management Errors •