Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libav vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2016-8675
The get_vlc2 function in get_bits.h in Libav prior to 11.9 allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a crafted mp3 file, possibly related to startcode sequences during m4v detection.
Libav Libav
5.5
CVSSv3
CVE-2016-8676
The get_vlc2 function in get_bits.h in Libav 11.9 allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a crafted mp3 file. NOTE: this issue exists due to an incomplete fix for CVE-2016-8675.
Libav Libav
5.5
CVSSv3
CVE-2016-9821
Integer overflow in libavcodec/mpegvideo_parser.c in libav 11.8 allows remote malicious users to cause a denial of service (crash) via a crafted file.
Libav Libav 11.8
6.5
CVSSv3
CVE-2018-18826
There exists a heap-based buffer overflow in vc1_decode_p_mb_intfi in vc1_block.c in Libav 12.3, which allows malicious users to cause a denial-of-service via a crafted aac file.
Libav Libav 12.3
6.5
CVSSv3
CVE-2019-14371
An issue exists in Libav 12.3. There is an infinite loop in the function mov_probe in the file libavformat/mov.c, related to offset and tag.
Libav Libav 12.3
6.5
CVSSv3
CVE-2019-14372
In Libav 12.3, there is an infinite loop in the function wv_read_block_header() in the file wvdec.c.
Libav Libav 12.3
6.5
CVSSv3
CVE-2017-5984
In libavcodec in Libav 9.21, ff_h264_execute_ref_pic_marking() has a heap-based buffer over-read.
Libav Libav 9.21
6.5
CVSSv3
CVE-2020-18775
In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_b_mb_intfi in vc1_block.c that allows an malicious user to cause denial-of-service via a crafted file.
Libav Libav 12.3
6.5
CVSSv3
CVE-2020-18776
In Libav 12.3, there is a segmentation fault in vc1_decode_b_mb_intfr in vc1_block.c that allows an malicious user to cause denial-of-service via a crafted file.
Libav Libav 12.3
6.5
CVSSv3
CVE-2020-18778
In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_p_mb_intfi in vc1_block.c that allows an malicious user to cause denial-of-service via a crafted file.
Libav Libav 12.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »