ffmpeg ffmpeg 4.2 vulnerabilities and exploits

(subscribe to this query)

4

CVSSv2

FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aacpsy.c, which allows a remote malicious user to cause a Denial of Service.

Ffmpeg Ffmpeg 4.2 Debian Debian Linux 9.0 Debian Debian Linux 10.0 Debian Debian Linux 11.0

4

CVSSv2

FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aaccoder, which allows a remote malicious user to cause a Denial of Service

Ffmpeg Ffmpeg 4.2 Debian Debian Linux 9.0 Debian Debian Linux 10.0 Debian Debian Linux 11.0

4.3

CVSSv2

A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in avcodec_alloc_context3 at options.c.

Ffmpeg Ffmpeg 4.2 Debian Debian Linux 9.0 Debian Debian Linux 10.0 Debian Debian Linux 11.0

6.8

CVSSv2

FFmpeg up to and including 4.2 has a "Conditional jump or move depends on uninitialised value" issue in h2645_parse because alloc_rbsp_buffer in libavcodec/h2645_parse.c mishandles rbsp_buffer.

Ffmpeg Ffmpeg

7.5

CVSSv2

In FFmpeg prior to 4.2, avcodec_open2 in libavcodec/utils.c allows a NULL pointer dereference and possibly unspecified other impact when there is no valid close function pointer.

Ffmpeg Ffmpeg Debian Debian Linux 9.0 Debian Debian Linux 10.0 Canonical Ubuntu Linux 16.04 Canonical Ubuntu Linux 18.04 Canonical Ubuntu Linux 20.04

7.5

CVSSv2

FFmpeg prior to 4.2 has a heap-based buffer overflow in vqa_decode_chunk because of an out-of-array access in vqa_decode_init in libavcodec/vqavideo.c.

Ffmpeg Ffmpeg Canonical Ubuntu Linux 16.04 Canonical Ubuntu Linux 18.04 Canonical Ubuntu Linux 20.04 Debian Debian Linux 8.0 Debian Debian Linux 9.0 Debian Debian Linux 10.0

Get Started

« PREV 1 2 3 4 5

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook