Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libav libav 12.3 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2018-18828
There exists a heap-based buffer overflow in vc1_decode_i_block_adv in vc1_block.c in Libav 12.3, which allows malicious users to cause a denial-of-service via a crafted aac file.
Libav Libav 12.3
4.3
CVSSv2
CVE-2018-18829
There exists a NULL pointer dereference in ff_vc1_parse_frame_header_adv in vc1.c in Libav 12.3, which allows malicious users to cause a denial-of-service through a crafted aac file.
Libav Libav 12.3
5
CVSSv2
CVE-2018-11102
An issue exists in Libav 12.3. A read access violation in the mov_probe function in libavformat/mov.c allows remote malicious users to cause a denial of service (application crash), as demonstrated by avconv.
Libav Libav 12.3
4.3
CVSSv2
CVE-2019-14372
In Libav 12.3, there is an infinite loop in the function wv_read_block_header() in the file wvdec.c.
Libav Libav 12.3
4.3
CVSSv2
CVE-2018-19129
In Libav 12.3, a NULL pointer dereference (RIP points to zero) issue in ff_mpa_synth_filter_float in libavcodec/mpegaudiodsp_template.c can cause a segmentation fault (application crash) via a crafted mov file.
Libav Libav 12.3
4.3
CVSSv2
CVE-2018-19130
In Libav 12.3, there is an invalid memory access in vc1_decode_frame in libavcodec/vc1dec.c that allows malicious users to cause a denial-of-service via a crafted aac file. NOTE: This may be a duplicate of CVE-2017-17127
Libav Libav 12.3
7.1
CVSSv2
CVE-2019-14442
In mpc8_read_header in libavformat/mpc8.c in Libav 12.3, an input file can result in an avio_seek infinite loop and hang, with 100% CPU consumption. Attackers could leverage this vulnerability to cause a denial of service via a crafted file.
Libav Libav 12.3
Debian Debian Linux 8.0
4.3
CVSSv2
CVE-2019-14443
An issue exists in Libav 12.3. Division by zero in range_decode_culshift in libavcodec/apedec.c allows remote malicious users to cause a denial of service (application crash), as demonstrated by avconv.
Libav Libav 12.3
Debian Debian Linux 8.0
7.1
CVSSv2
CVE-2019-9720
A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows malicious users to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuses snprintf.
Libav Libav
7.1
CVSSv2
CVE-2019-9717
In Libav 12.3, a denial of service in the subtitle decoder allows malicious users to hog the CPU via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c has a complex format argument to sscanf.
Libav Libav
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »