Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libavformat project libavformat vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-4352
Integer overflow in the demuxer function in libmpdemux/demux_gif.c in Mplayer allows remote malicious users to cause a denial of service (crash) via large dimensions in a gif file.
Libavformat Project Libavformat
4.3
CVSSv2
CVE-2016-5115
The avcodec_decode_audio4 function in libavcodec in libavformat 57.34.103, as used in MPlayer, allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted mp3 file.
Libavformat Project Libavformat 57.34.103
9.3
CVSSv2
CVE-2008-3162
Stack-based buffer overflow in the str_read_packet function in libavformat/psxstr.c in FFmpeg before r13993 allows remote malicious users to cause a denial of service (application crash) or execute arbitrary code via a crafted STR file that interleaves audio and video sectors.
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.4.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.4.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.3.4
Ffmpeg Ffmpeg 0.4.0
Ffmpeg Ffmpeg 0.4.8
Ffmpeg Ffmpeg 0.4.9
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.3.1
Ffmpeg Ffmpeg 0.4.4
Ffmpeg Ffmpeg 0.4.5
1 EDB exploit
9.3
CVSSv2
CVE-2009-0385
Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote malicious users to execute arbitrary code via a malformed 4X movie file with a large current_track value, which triggers a NULL pointer dereference.
Ffmpeg Ffmpeg
Debian Debian Linux 5.0
Debian Debian Linux 4.0
Debian Debian Linux 6.0
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.10
Canonical Ubuntu Linux 8.04
Fedoraproject Fedora 10
Fedoraproject Fedora 9
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started