CVE search results

221 – 230 of 352 results

Detailed view

Sort by:

CVE-2014-9604

Medium priority

Some fixes available 2 of 5

libavcodec/utvideodec.c in FFmpeg before 2.5.2 does not check for a zero value of a slice height, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact...

2 affected packages

ffmpeg, libav

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	—	—	—	—	—
libav	—	—	—	—	—

CVE-2014-8549

Medium priority

Ignored

libavcodec/on2avc.c in FFmpeg before 2.4.2 does not constrain the number of channels to at most 2, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via...

2 affected packages

ffmpeg, libav

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	—	—	—	—	—
libav	—	—	—	—	—

CVE-2014-8548

Medium priority

Some fixes available 2 of 9

Off-by-one error in libavcodec/smc.c in FFmpeg before 2.4.2 allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted Quicktime Graphics (aka SMC) video data.

3 affected packages

ffmpeg, libav, mplayer

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	—	—	—	—	Not affected
libav	—	—	—	—	Not in release
mplayer	—	—	—	—	Not affected

CVE-2014-8547

Medium priority

Some fixes available 2 of 9

libavcodec/gifdec.c in FFmpeg before 2.4.2 does not properly compute image heights, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted GIF data.

3 affected packages

ffmpeg, libav, mplayer

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	—	—	—	—	Not affected
libav	—	—	—	—	Not in release
mplayer	—	—	—	—	Not affected

CVE-2014-8544

Medium priority

Some fixes available 2 of 10

libavcodec/tiff.c in FFmpeg before 2.4.2 does not properly validate bits-per-pixel fields, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via crafted TIFF data.

3 affected packages

ffmpeg, libav, mplayer

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	—	—	—	—	Not affected
libav	—	—	—	—	Not in release
mplayer	—	—	—	—	Not affected

CVE-2014-8543

Medium priority

Some fixes available 2 of 9

libavcodec/mmvideo.c in FFmpeg before 2.4.2 does not consider all lines of HHV Intra blocks during validation of image height, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have...

3 affected packages

ffmpeg, libav, mplayer

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	—	—	—	—	Not affected
libav	—	—	—	—	Not in release
mplayer	—	—	—	—	Not affected

CVE-2014-8542

Medium priority

Some fixes available 2 of 9

libavcodec/utils.c in FFmpeg before 2.4.2 omits a certain codec ID during enforcement of alignment, which allows remote attackers to cause a denial of service (out-of-bounds access) or possibly have unspecified other impact via...

3 affected packages

ffmpeg, libav, mplayer

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	—	—	—	—	Not affected
libav	—	—	—	—	Not in release
mplayer	—	—	—	—	Not affected

CVE-2014-8541

Low priority

Some fixes available 2 of 9

libavcodec/mjpegdec.c in FFmpeg before 2.4.2 considers only dimension differences, and not bits-per-pixel differences, when determining whether an image size has changed, which allows remote attackers to cause a denial of service...

3 affected packages

ffmpeg, libav, mplayer

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	—	—	—	—	Not affected
libav	—	—	—	—	Not in release
mplayer	—	—	—	—	Not affected

CVE-2014-3984

Medium priority

Fixed

Multiple unspecified vulnerabilities in Libav before 0.8.12 allow remote attackers to have unknown impact and vectors.

1 affected package

libav

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	—	—	—	—	—

CVE-2012-6618

Low priority

Needs evaluation

The av_probe_input_buffer function in libavformat/utils.c in FFmpeg before 1.0.2, when running with certain -probesize values, allows remote attackers to cause a denial of service (crash) via a crafted MP3 file, possibly related...

3 affected packages

ffmpeg, libav, qtwebengine-opensource-src

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Not affected	Not affected	Not affected	Not affected	Not affected
libav	Not in release	Not in release	Not in release	Not in release	Not in release
qtwebengine-opensource-src	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

Export to JSON

Results by page:

Search CVE reports