Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libavcodec vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2016-6920
Heap-based buffer overflow in the decode_block function in libavcodec/exr.c in FFmpeg prior to 3.1.3 allows remote malicious users to cause a denial of service (application crash) via vectors involving tile positions.
Ffmpeg Ffmpeg
9.3
CVSSv2
CVE-2013-0875
The ff_add_png_paeth_prediction function in libavcodec/pngdec.c in FFmpeg prior to 1.1.3 allows remote malicious users to have an unspecified impact via a crafted PNG image, related to an out-of-bounds array access.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 1.0
Ffmpeg Ffmpeg 1.1.1
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
5
CVSSv2
CVE-2012-2774
The ff_MPV_frame_start function in libavcodec/mpegvideo.c in FFmpeg prior to 0.11 allows remote malicious users to cause a denial of service (memory corruption) via unspecified vectors, related to starting "a frame outside SETUP state."
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
Ffmpeg Ffmpeg 0.8.5
Ffmpeg Ffmpeg 0.9
9.3
CVSSv2
CVE-2013-0850
The decode_slice_header function in libavcodec/h264.c in FFmpeg prior to 1.1 allows remote malicious users to have an unspecified impact via crafted H.264 data, which triggers an out-of-bounds array access.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
Ffmpeg Ffmpeg 0.8.5
Ffmpeg Ffmpeg 0.9
9.3
CVSSv2
CVE-2013-0863
Buffer overflow in the rle_decode function in libavcodec/sanm.c in FFmpeg prior to 1.0.4 and 1.1.x prior to 1.1.2 allows remote malicious users to have an unspecified impact via crafted LucasArts Smush video data.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 1.0
Ffmpeg Ffmpeg 1.1.1
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
9.3
CVSSv2
CVE-2013-0856
The lpc_prediction function in libavcodec/alac.c in FFmpeg prior to 1.1 allows remote malicious users to have an unspecified impact via crafted Apple Lossless Audio Codec (ALAC) data, related to a large nb_samples value.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.10.3
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.9.1
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
Ffmpeg Ffmpeg 0.8.5
Ffmpeg Ffmpeg 0.9
7.5
CVSSv2
CVE-2011-3941
The decode_mb function in libavcodec/error_resilience.c in FFmpeg prior to 0.10 allows remote malicious users to have an unspecified impact via vectors related to an uninitialized block index, which triggers an out-of-bounds write.
Ffmpeg Ffmpeg 0.7.7
Ffmpeg Ffmpeg 0.7.1
Ffmpeg Ffmpeg 0.7.6
Ffmpeg Ffmpeg 0.4.5
Ffmpeg Ffmpeg 0.3.2
Ffmpeg Ffmpeg 0.8.6
Ffmpeg Ffmpeg 0.4.7
Ffmpeg Ffmpeg 0.6.1
Ffmpeg Ffmpeg 0.3.3
Ffmpeg Ffmpeg 0.7.5
Ffmpeg Ffmpeg 0.5.4.6
Ffmpeg Ffmpeg 0.3
Ffmpeg Ffmpeg 0.4.2
Ffmpeg Ffmpeg 0.5
Ffmpeg Ffmpeg 0.5.4
Ffmpeg Ffmpeg 0.8.5.4
Ffmpeg Ffmpeg 0.8.5.3
Ffmpeg Ffmpeg 0.5.1
Ffmpeg Ffmpeg 0.8.5
Ffmpeg Ffmpeg 0.9
Ffmpeg Ffmpeg 0.3.1
Ffmpeg Ffmpeg 0.7.3
4.3
CVSSv2
CVE-2018-11224
An issue exists in Libav 12.3. A read access violation in the in_table_init16 function in libavcodec/aacsbr.c allows remote malicious users to cause a denial of service (application crash), as demonstrated by avconv.
Libav Libav 12.3
7.1
CVSSv2
CVE-2019-9720
A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows malicious users to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuses snprintf.
Libav Libav
6.8
CVSSv2
CVE-2017-17129
The ff_vc1_mc_4mv_chroma4 function in libavcodec/vc1_mc.c in Libav 12.2 allows remote malicious users to cause a denial of service (segmentation fault and application crash) or possibly have unspecified other impact via a crafted file.
Libav Libav 12.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »