libavformat project libavformat vulnerabilities and exploits

(subscribe to this query)

4.3

CVSSv2

Integer overflow in the demuxer function in libmpdemux/demux_gif.c in Mplayer allows remote malicious users to cause a denial of service (crash) via large dimensions in a gif file.

Libavformat Project Libavformat

4.3

CVSSv2

The avcodec_decode_audio4 function in libavcodec in libavformat 57.34.103, as used in MPlayer, allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted mp3 file.

Libavformat Project Libavformat 57.34.103

9.3

CVSSv2

Stack-based buffer overflow in the str_read_packet function in libavformat/psxstr.c in FFmpeg before r13993 allows remote malicious users to cause a denial of service (application crash) or execute arbitrary code via a crafted STR file that interleaves audio and video sectors.

Ffmpeg Ffmpeg 0.4.2 Ffmpeg Ffmpeg 0.4.3 Ffmpeg Ffmpeg 0.3.2 Ffmpeg Ffmpeg 0.3.3 Ffmpeg Ffmpeg 0.4.6 Ffmpeg Ffmpeg 0.4.7 Ffmpeg Ffmpeg 0.3.4 Ffmpeg Ffmpeg 0.4.0 Ffmpeg Ffmpeg 0.4.8 Ffmpeg Ffmpeg 0.4.9 Ffmpeg Ffmpeg 0.3 Ffmpeg Ffmpeg 0.3.1 Ffmpeg Ffmpeg 0.4.4 Ffmpeg Ffmpeg 0.4.5

1 EDB exploit

9.3

CVSSv2

Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote malicious users to execute arbitrary code via a malformed 4X movie file with a large current_track value, which triggers a NULL pointer dereference.

Ffmpeg Ffmpeg Debian Debian Linux 5.0 Debian Debian Linux 4.0 Debian Debian Linux 6.0 Canonical Ubuntu Linux 7.10 Canonical Ubuntu Linux 8.10 Canonical Ubuntu Linux 8.04 Fedoraproject Fedora 10 Fedoraproject Fedora 9

1 Github repository

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook