Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libav vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-9720
A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows malicious users to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuses snprintf.
Libav Libav
NA
CVE-2011-3952
The decode_init function in kmvc.c in libavcodec in FFmpeg prior to 0.10 and in Libav 0.5.x prior to 0.5.9, 0.6.x prior to 0.6.6, 0.7.x prior to 0.7.6, and 0.8.x prior to 0.8.1 allows remote malicious users to cause a denial of service (application crash) and possibly execute arb...
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.5.1
Ffmpeg Ffmpeg 0.8.5
Ffmpeg Ffmpeg 0.9
Ffmpeg Ffmpeg 0.3.1
Ffmpeg Ffmpeg 0.7.3
Ffmpeg Ffmpeg 0.4.9
Ffmpeg Ffmpeg 0.8.0
Ffmpeg Ffmpeg 0.6
Ffmpeg Ffmpeg 0.5.3
6.5
CVSSv3
CVE-2018-18826
There exists a heap-based buffer overflow in vc1_decode_p_mb_intfi in vc1_block.c in Libav 12.3, which allows malicious users to cause a denial-of-service via a crafted aac file.
Libav Libav 12.3
6.5
CVSSv3
CVE-2018-18827
There exists a heap-based buffer over-read in ff_vc1_pred_dc in vc1_block.c in Libav 12.3, which allows malicious users to cause a denial-of-service via a crafted aac file.
Libav Libav 12.3
6.5
CVSSv3
CVE-2018-18828
There exists a heap-based buffer overflow in vc1_decode_i_block_adv in vc1_block.c in Libav 12.3, which allows malicious users to cause a denial-of-service via a crafted aac file.
Libav Libav 12.3
6.5
CVSSv3
CVE-2018-18829
There exists a NULL pointer dereference in ff_vc1_parse_frame_header_adv in vc1.c in Libav 12.3, which allows malicious users to cause a denial-of-service through a crafted aac file.
Libav Libav 12.3
5.5
CVSSv3
CVE-2016-7477
The ff_put_pixels8_xy2_mmx function in rnd_template.c in Libav 11.7 allows remote malicious users to cause a denial of service (invalid memory access and crash) via a crafted mp3 file. NOTE: this issue was originally reported as involving a NULL pointer dereference.
Libav Libav 11.7
6.5
CVSSv3
CVE-2018-20001
In Libav 12.3, there is a floating point exception in the range_decode_culshift function (called from range_decode_bits) in libavcodec/apedec.c that will lead to remote denial of service via crafted input.
Libav Libav 12.3
6.5
CVSSv3
CVE-2017-5984
In libavcodec in Libav 9.21, ff_h264_execute_ref_pic_marking() has a heap-based buffer over-read.
Libav Libav 9.21
6.5
CVSSv3
CVE-2019-14371
An issue exists in Libav 12.3. There is an infinite loop in the function mov_probe in the file libavformat/mov.c, related to offset and tag.
Libav Libav 12.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »