Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libav vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2019-9719
A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows malicious users to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuses snprintf. NOTE: Third parties dispute that this is a vulnerability becaus...
Libav Libav
7.1
CVSSv2
CVE-2019-9720
A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows malicious users to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuses snprintf.
Libav Libav
5
CVSSv2
CVE-2017-11684
There is an illegal address access in the build_table function in libavcodec/bitstream.c of Libav 12.1 that will lead to remote denial of service via crafted input.
Libav Libav 12.1
4.3
CVSSv2
CVE-2016-9821
Integer overflow in libavcodec/mpegvideo_parser.c in libav 11.8 allows remote malicious users to cause a denial of service (crash) via a crafted file.
Libav Libav 11.8
4.3
CVSSv2
CVE-2016-9824
Integer overflow in libswscale/x86/swscale.c in libav 11.8 allows remote malicious users to cause a denial of service (crash) via a crafted file.
Libav Libav 11.8
4.3
CVSSv2
CVE-2018-18828
There exists a heap-based buffer overflow in vc1_decode_i_block_adv in vc1_block.c in Libav 12.3, which allows malicious users to cause a denial-of-service via a crafted aac file.
Libav Libav 12.3
4.3
CVSSv2
CVE-2019-14441
An issue exists in Libav 12.3. An access violation allows remote malicious users to cause a denial of service (application crash), as demonstrated by avconv. This is related to ff_mpa_synth_filter_float in avcodec/mpegaudiodsp_template.c. NOTE: This may be a duplicate of CVE-2018...
Libav Libav 12.3
4.3
CVSSv2
CVE-2016-7477
The ff_put_pixels8_xy2_mmx function in rnd_template.c in Libav 11.7 allows remote malicious users to cause a denial of service (invalid memory access and crash) via a crafted mp3 file. NOTE: this issue was originally reported as involving a NULL pointer dereference.
Libav Libav 11.7
4.3
CVSSv2
CVE-2017-5984
In libavcodec in Libav 9.21, ff_h264_execute_ref_pic_marking() has a heap-based buffer over-read.
Libav Libav 9.21
4.3
CVSSv2
CVE-2017-17127
The vc1_decode_frame function in libavcodec/vc1dec.c in Libav 12.2 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
Libav Libav 12.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »