Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ffmpeg ffmpeg 2.7.2 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2015-6818
The decode_ihdr_chunk function in libavcodec/pngdec.c in FFmpeg prior to 2.7.2 does not enforce uniqueness of the IHDR (aka image header) chunk in a PNG image, which allows remote malicious users to cause a denial of service (out-of-bounds array access) or possibly have unspecifi...
Ffmpeg Ffmpeg
Canonical Ubuntu Linux 12.04
7.5
CVSSv2
CVE-2015-6819
Multiple integer underflows in the ff_mjpeg_decode_frame function in libavcodec/mjpegdec.c in FFmpeg prior to 2.7.2 allow remote malicious users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted MJPEG data.
Ffmpeg Ffmpeg
7.5
CVSSv2
CVE-2015-6820
The ff_sbr_apply function in libavcodec/aacsbr.c in FFmpeg prior to 2.7.2 does not check for a matching AAC frame syntax element before proceeding with Spectral Band Replication calculations, which allows remote malicious users to cause a denial of service (out-of-bounds array ac...
Ffmpeg Ffmpeg
Canonical Ubuntu Linux 12.04
7.5
CVSSv2
CVE-2015-6821
The ff_mpv_common_init function in libavcodec/mpegvideo.c in FFmpeg prior to 2.7.2 does not properly maintain the encoding context, which allows remote malicious users to cause a denial of service (invalid pointer access) or possibly have unspecified other impact via crafted MPEG...
Ffmpeg Ffmpeg
7.5
CVSSv2
CVE-2015-6822
The destroy_buffers function in libavcodec/sanm.c in FFmpeg prior to 2.7.2 does not properly maintain height and width values in the video context, which allows remote malicious users to cause a denial of service (segmentation violation and application crash) or possibly have uns...
Ffmpeg Ffmpeg
7.5
CVSSv2
CVE-2015-6823
The allocate_buffers function in libavcodec/alac.c in FFmpeg prior to 2.7.2 does not initialize certain context data, which allows remote malicious users to cause a denial of service (segmentation violation) or possibly have unspecified other impact via crafted Apple Lossless Aud...
Ffmpeg Ffmpeg
7.5
CVSSv2
CVE-2015-6825
The ff_frame_thread_init function in libavcodec/pthread_frame.c in FFmpeg prior to 2.7.2 mishandles certain memory-allocation failures, which allows remote malicious users to cause a denial of service (invalid pointer access) or possibly have unspecified other impact via a crafte...
Ffmpeg Ffmpeg
7.5
CVSSv2
CVE-2015-6824
The sws_init_context function in libswscale/utils.c in FFmpeg prior to 2.7.2 does not initialize certain pixbuf data structures, which allows remote malicious users to cause a denial of service (segmentation violation) or possibly have unspecified other impact via crafted video d...
Ffmpeg Ffmpeg
Canonical Ubuntu Linux 12.04
7.5
CVSSv2
CVE-2015-6826
The ff_rv34_decode_init_thread_copy function in libavcodec/rv34.c in FFmpeg prior to 2.7.2 does not initialize certain structure members, which allows remote malicious users to cause a denial of service (invalid pointer access) or possibly have unspecified other impact via crafte...
Canonical Ubuntu Linux 12.04
Ffmpeg Ffmpeg
6.8
CVSSv2
CVE-2015-8363
The jpeg2000_read_main_headers function in libavcodec/jpeg2000dec.c in FFmpeg prior to 2.6.5, 2.7.x prior to 2.7.3, and 2.8.x up to and including 2.8.2 does not enforce uniqueness of the SIZ marker in a JPEG 2000 image, which allows remote malicious users to cause a denial of ser...
Ffmpeg Ffmpeg 2.7.1
Ffmpeg Ffmpeg 2.7.0
Ffmpeg Ffmpeg 2.8.2
Ffmpeg Ffmpeg 2.8.1
Ffmpeg Ffmpeg 2.6.4
Ffmpeg Ffmpeg 2.7.2
Ffmpeg Ffmpeg 2.8.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »