CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14225
https://notcve.org/view.php?id=CVE-2017-14225
09 Sep 2017 — The av_color_primaries_name function in libavutil/pixdesc.c in FFmpeg 3.3.3 may return a NULL pointer depending on a value contained in a file, but callers do not anticipate this, as demonstrated by the avcodec_string function in libavcodec/utils.c, leading to a NULL pointer dereference. (It is also conceivable that there is security relevance for a NULL pointer dereference in av_color_primaries_name calls within the ffprobe command-line program.) La función av_color_primaries_name en libavutil/pixdesc.c en... • http://www.debian.org/security/2017/dsa-3996 • CWE-476: NULL Pointer Dereference •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14222
https://notcve.org/view.php?id=CVE-2017-14222
09 Sep 2017 — In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption. When a crafted MOV file, which claims a large "item_count" field in the header but does not contain sufficient backing data, is provided, the loop would consume huge CPU and memory resources, since there is no EOF check inside the loop. En libavformat/mov.c en FFmpeg 3.3.3, una denegación de servicio en read_tfra() debido a una falta de comprobación EOE (End of Fi... • http://www.debian.org/security/2017/dsa-3996 • CWE-834: Excessive Iteration •
CVSS: 7.1EPSS: 0%CPEs: 3EXPL: 0CVE-2017-14223
https://notcve.org/view.php?id=CVE-2017-14223
09 Sep 2017 — In libavformat/asfdec_f.c in FFmpeg 3.3.3, a DoS in asf_build_simple_index() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but does not contain sufficient backing data, is provided, the for loop would consume huge CPU and memory resources, since there is no EOF check inside the loop. En libavformat/asfdec_f.c en FFmpeg 3.3.3, una denegación de servicio en asf_build_simple_index() debido a una falta de compr... • http://www.debian.org/security/2017/dsa-3996 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14171
https://notcve.org/view.php?id=CVE-2017-14171
07 Sep 2017 — In libavformat/nsvdec.c in FFmpeg 2.4 and 3.3.3, a DoS in nsv_parse_NSVf_header() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted NSV file, which claims a large "table_entries_used" field in the header but does not contain sufficient backing data, is provided, the loop over 'table_entries_used' would consume huge CPU resources, since there is no EOF check inside the loop. En libavformat/nsvdec.c en FFmpeg versión 2.4 y 3.3.3, una denegación de servicio en nsv_parse... • http://www.debian.org/security/2017/dsa-3996 • CWE-834: Excessive Iteration •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14170
https://notcve.org/view.php?id=CVE-2017-14170
07 Sep 2017 — In libavformat/mxfdec.c in FFmpeg 3.3.3 -> 2.4, a DoS in mxf_read_index_entry_array() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted MXF file, which claims a large "nb_index_entries" field in the header but does not contain sufficient backing data, is provided, the loop would consume huge CPU resources, since there is no EOF check inside the loop. Moreover, this big loop can be invoked multiple times if there is more than one applicable data segment in the crafted... • http://www.debian.org/security/2017/dsa-3996 • CWE-834: Excessive Iteration •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-14169
https://notcve.org/view.php?id=CVE-2017-14169
07 Sep 2017 — In the mxf_read_primer_pack function in libavformat/mxfdec.c in FFmpeg 3.3.3 -> 2.4, an integer signedness error might occur when a crafted file, which claims a large "item_num" field such as 0xffffffff, is provided. As a result, the variable "item_num" turns negative, bypassing the check for a large value. En la función mxf_read_primer_pack en libavformat/mxfdec.c en FFmpeg versión 3.3.3 mayor a 2.4, podría ocurrir un error de firmas de enteros cuando se proporciona un archivo manipulado que reclame un cam... • http://www.debian.org/security/2017/dsa-3996 • CWE-20: Improper Input Validation •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14056
https://notcve.org/view.php?id=CVE-2017-14056
31 Aug 2017 — In libavformat/rl2.c in FFmpeg 3.3.3, a DoS in rl2_read_header() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption. When a crafted RL2 file, which claims a large "frame_count" field in the header but does not contain sufficient backing data, is provided, the loops (for offset and size tables) would consume huge CPU and memory resources, since there is no EOF check inside these loops. En libavformat/rl2.c in FFmpeg 3.3.3, se podría realizar un ataque de denegación de servi... • http://www.debian.org/security/2017/dsa-3996 • CWE-834: Excessive Iteration •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14058
https://notcve.org/view.php?id=CVE-2017-14058
31 Aug 2017 — In FFmpeg 2.4 and 3.3.3, the read_data function in libavformat/hls.c does not restrict reload attempts for an insufficient list, which allows remote attackers to cause a denial of service (infinite loop). En FFmpeg versiones 2.4 y 3.3.3, la función read_data en libavformat/hls.c no restringe los intentos de recarga de una lista insuficiente, lo que permite a los atacantes remotos causar una denegación de servicio (bucle infinito) • http://www.debian.org/security/2017/dsa-3996 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14055
https://notcve.org/view.php?id=CVE-2017-14055
31 Aug 2017 — In libavformat/mvdec.c in FFmpeg 3.3.3, a DoS in mv_read_header() due to lack of an EOF (End of File) check might cause huge CPU and memory consumption. When a crafted MV file, which claims a large "nb_frames" field in the header but does not contain sufficient backing data, is provided, the loop over the frames would consume huge CPU and memory resources, since there is no EOF check inside the loop. En libavformat/mvdec.c in FFmpeg 3.3.3, se podría realizar un ataque de denegación de servicio en mv_read_he... • http://www.debian.org/security/2017/dsa-3996 • CWE-834: Excessive Iteration •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14059
https://notcve.org/view.php?id=CVE-2017-14059
31 Aug 2017 — In FFmpeg 3.3.3, a DoS in cine_read_header() due to lack of an EOF check might cause huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but does not contain sufficient backing data, is provided, the image-offset parsing loop would consume huge CPU and memory resources, since there is no EOF check inside the loop. En FFmpeg 3.3.3, se podría realizar un ataque de denegación de servicio en cine_read_header() al no haber un chequeo EOF (End Of File) qu... • http://www.debian.org/security/2017/dsa-3996 • CWE-834: Excessive Iteration •