Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libav vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2018-18827
There exists a heap-based buffer over-read in ff_vc1_pred_dc in vc1_block.c in Libav 12.3, which allows malicious users to cause a denial-of-service via a crafted aac file.
Libav Libav 12.3
7.1
CVSSv3
CVE-2017-7206
The ff_h2645_extract_rbsp function in libavcodec in libav 9.21 allows remote malicious users to cause a denial of service (heap-based buffer over-read) or obtain sensitive information from process memory via a crafted h264 video file.
Libav Libav 9.21
6.5
CVSSv3
CVE-2017-18242
The apply_dependent_coupling function in libavcodec/aacdec.c in Libav 12.2 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted aac file.
Libav Libav 12.2
6.5
CVSSv3
CVE-2017-18243
The unpack_parse_unit function in libavcodec/dirac_parser.c in Libav 12.2 allows remote malicious users to cause a denial of service (segmentation fault) via a crafted file.
Libav Libav 12.2
6.5
CVSSv3
CVE-2017-18244
The stereo_processing function in libavcodec/aacps.c in Libav 12.2 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted aac file, related to ff_ps_apply.
Libav Libav 12.2
6.5
CVSSv3
CVE-2017-18245
The mpc8_probe function in libavformat/mpc8.c in Libav 12.2 allows remote malicious users to cause a denial of service (heap-based buffer over-read) via a crafted audio file.
Libav Libav 12.2
6.5
CVSSv3
CVE-2017-18247
The av_audio_fifo_size function in libavutil/audio_fifo.c in Libav 12.2 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted media file.
Libav Libav 12.2
5.5
CVSSv3
CVE-2016-7477
The ff_put_pixels8_xy2_mmx function in rnd_template.c in Libav 11.7 allows remote malicious users to cause a denial of service (invalid memory access and crash) via a crafted mp3 file. NOTE: this issue was originally reported as involving a NULL pointer dereference.
Libav Libav 11.7
5.5
CVSSv3
CVE-2016-7499
The sbr_make_f_master function in aacsbr.c in Libav 11.7 allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted mp3 file.
Libav Libav 11.7
6.5
CVSSv3
CVE-2018-18828
There exists a heap-based buffer overflow in vc1_decode_i_block_adv in vc1_block.c in Libav 12.3, which allows malicious users to cause a denial-of-service via a crafted aac file.
Libav Libav 12.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »