| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-2329 | 6.8 |
libavcodec/tiff.c in FFmpeg before 2.8.6 does not properly validate RowsPerStrip values and YCbCr chrominance subsampling factors, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified ot
|
30-10-2018 - 16:27 | 12-02-2016 - 05:59 | |
| CVE-2016-1898 | 4.3 |
FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains an arbitrary lin
|
30-10-2018 - 16:27 | 15-01-2016 - 03:59 | |
| CVE-2016-1897 | 4.3 |
FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains the first line of
|
30-10-2018 - 16:27 | 15-01-2016 - 03:59 | |
| CVE-2016-2326 | 6.8 |
Integer overflow in the asf_write_packet function in libavformat/asfenc.c in FFmpeg before 2.8.5 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PTS (aka presentation timestamp) value in a
|
01-07-2017 - 01:29 | 12-02-2016 - 05:59 | |
| CVE-2016-2330 | 6.8 |
libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer size, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted .tga file, related to t
|
06-12-2016 - 19:49 | 12-02-2016 - 05:59 | |
| CVE-2016-2327 | 6.8 |
libavcodec/pngenc.c in FFmpeg before 2.8.5 uses incorrect line sizes in certain row calculations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via a crafted .avi fil
|
06-12-2016 - 19:45 | 12-02-2016 - 05:59 | |
| CVE-2016-2328 | 6.8 |
libswscale/swscale_unscaled.c in FFmpeg before 2.8.6 does not validate certain height values, which allows remote attackers to cause a denial of service (out-of-bounds array read access) or possibly have unspecified other impact via a crafted .cine f
|
06-12-2016 - 19:45 | 12-02-2016 - 05:59 | |
| CVE-2016-2213 | 4.3 |
The jpeg2000_decode_tile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.6 allows remote attackers to cause a denial of service (out-of-bounds array read access) via crafted JPEG 2000 data.
|
06-12-2016 - 03:08 | 03-02-2016 - 14:59 | |
| CVE-2014-9676 | 6.8 |
The seg_write_packet function in libavformat/segment.c in ffmpeg 2.1.4 and earlier does not free the correct memory location, which allows remote attackers to cause a denial of service ("invalid memory handler") and possibly execute arbitrary code vi
|
30-11-2016 - 02:59 | 28-02-2015 - 01:59 |