Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libav libav vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-9719
A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows malicious users to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuses snprintf. NOTE: Third parties dispute that this is a vulnerability becaus...
Libav Libav
6.5
CVSSv3
CVE-2019-9720
A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows malicious users to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuses snprintf.
Libav Libav
6.5
CVSSv3
CVE-2020-18776
In Libav 12.3, there is a segmentation fault in vc1_decode_b_mb_intfr in vc1_block.c that allows an malicious user to cause denial-of-service via a crafted file.
Libav Libav 12.3
6.5
CVSSv3
CVE-2017-18242
The apply_dependent_coupling function in libavcodec/aacdec.c in Libav 12.2 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted aac file.
Libav Libav 12.2
6.5
CVSSv3
CVE-2017-18243
The unpack_parse_unit function in libavcodec/dirac_parser.c in Libav 12.2 allows remote malicious users to cause a denial of service (segmentation fault) via a crafted file.
Libav Libav 12.2
6.5
CVSSv3
CVE-2019-14371
An issue exists in Libav 12.3. There is an infinite loop in the function mov_probe in the file libavformat/mov.c, related to offset and tag.
Libav Libav 12.3
6.5
CVSSv3
CVE-2019-14372
In Libav 12.3, there is an infinite loop in the function wv_read_block_header() in the file wvdec.c.
Libav Libav 12.3
6.5
CVSSv3
CVE-2020-18775
In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_b_mb_intfi in vc1_block.c that allows an malicious user to cause denial-of-service via a crafted file.
Libav Libav 12.3
6.5
CVSSv3
CVE-2020-18778
In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_p_mb_intfi in vc1_block.c that allows an malicious user to cause denial-of-service via a crafted file.
Libav Libav 12.3
5.5
CVSSv3
CVE-2016-9819
libavcodec/mpegvideo.c in libav 11.8 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Libav Libav 11.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »