Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libav libav vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-9717
In Libav 12.3, a denial of service in the subtitle decoder allows malicious users to hog the CPU via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c has a complex format argument to sscanf.
Libav Libav
6.5
CVSSv3
CVE-2019-14442
In mpc8_read_header in libavformat/mpc8.c in Libav 12.3, an input file can result in an avio_seek infinite loop and hang, with 100% CPU consumption. Attackers could leverage this vulnerability to cause a denial of service via a crafted file.
Libav Libav 12.3
Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2019-14443
An issue exists in Libav 12.3. Division by zero in range_decode_culshift in libavcodec/apedec.c allows remote malicious users to cause a denial of service (application crash), as demonstrated by avconv.
Libav Libav 12.3
Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2019-14441
An issue exists in Libav 12.3. An access violation allows remote malicious users to cause a denial of service (application crash), as demonstrated by avconv. This is related to ff_mpa_synth_filter_float in avcodec/mpegaudiodsp_template.c. NOTE: This may be a duplicate of CVE-2018...
Libav Libav 12.3
6.5
CVSSv3
CVE-2019-14371
An issue exists in Libav 12.3. There is an infinite loop in the function mov_probe in the file libavformat/mov.c, related to offset and tag.
Libav Libav 12.3
6.5
CVSSv3
CVE-2019-14372
In Libav 12.3, there is an infinite loop in the function wv_read_block_header() in the file wvdec.c.
Libav Libav 12.3
6.5
CVSSv3
CVE-2017-5984
In libavcodec in Libav 9.21, ff_h264_execute_ref_pic_marking() has a heap-based buffer over-read.
Libav Libav 9.21
6.5
CVSSv3
CVE-2018-20001
In Libav 12.3, there is a floating point exception in the range_decode_culshift function (called from range_decode_bits) in libavcodec/apedec.c that will lead to remote denial of service via crafted input.
Libav Libav 12.3
6.5
CVSSv3
CVE-2018-19129
In Libav 12.3, a NULL pointer dereference (RIP points to zero) issue in ff_mpa_synth_filter_float in libavcodec/mpegaudiodsp_template.c can cause a segmentation fault (application crash) via a crafted mov file.
Libav Libav 12.3
6.5
CVSSv3
CVE-2018-19128
In Libav 12.3, there is a heap-based buffer over-read in decode_frame in libavcodec/lcldec.c that allows an malicious user to cause denial-of-service via a crafted avi file.
Libav Libav 12.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »