Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libav libav vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-9825
libswscale/utils.c in libav 11.8 allows remote malicious users to cause a denial of service (crash) via vectors involving left shift of a negative value.
Libav Libav 11.8
4.3
CVSSv2
CVE-2016-7499
The sbr_make_f_master function in aacsbr.c in Libav 11.7 allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted mp3 file.
Libav Libav 11.7
4.3
CVSSv2
CVE-2016-8675
The get_vlc2 function in get_bits.h in Libav prior to 11.9 allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a crafted mp3 file, possibly related to startcode sequences during m4v detection.
Libav Libav
4.3
CVSSv2
CVE-2016-8676
The get_vlc2 function in get_bits.h in Libav 11.9 allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a crafted mp3 file. NOTE: this issue exists due to an incomplete fix for CVE-2016-8675.
Libav Libav
4.3
CVSSv2
CVE-2016-7477
The ff_put_pixels8_xy2_mmx function in rnd_template.c in Libav 11.7 allows remote malicious users to cause a denial of service (invalid memory access and crash) via a crafted mp3 file. NOTE: this issue was originally reported as involving a NULL pointer dereference.
Libav Libav 11.7
4.3
CVSSv2
CVE-2016-7393
Stack-based buffer overflow in the aac_sync function in aac_parser.c in Libav prior to 11.5 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted file.
Libav Libav
4.3
CVSSv2
CVE-2016-6832
Heap-based buffer overflow in the ff_audio_resample function in resample.c in libav prior to 11.4 allows remote malicious users to cause a denial of service (crash) via vectors related to buffer resizing.
Libav Libav
4.3
CVSSv2
CVE-2016-7424
The put_no_rnd_pixels8_xy2_mmx function in x86/rnd_template.c in libav 11.7 and previous versions allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a crafted MP3 file.
Debian Debian Linux 8.0
Libav Libav
6.8
CVSSv2
CVE-2016-3062
The mov_read_dref function in libavformat/mov.c in Libav prior to 11.7 and FFmpeg prior to 0.11 allows remote malicious users to cause a denial of service (memory corruption) or execute arbitrary code via the entries value in a dref box in an MP4 file.
Libav Libav
Ffmpeg Ffmpeg
Debian Debian Linux
Opensuse Leap 42.1
4.3
CVSSv2
CVE-2015-5479
The ff_h263_decode_mba function in libavcodec/ituh263dec.c in Libav prior to 11.5 allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a file with crafted dimensions.
Ubuntu Ubuntu 12.04
Libav Libav
Opensuse Leap 42.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »