| Max CVSS | 6.8 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-7555 | 4.3 |
The avi_read_header function in libavformat/avidec.c in FFmpeg before 3.1.4 is vulnerable to memory leak when decoding an AVI file that has a crafted "strh" structure.
|
01-07-2017 - 01:30 | 23-12-2016 - 05:59 | |
| CVE-2016-7562 | 4.3 |
The ff_draw_pc_font function in libavcodec/cga_data.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (buffer overflow) via a crafted AVI file.
|
01-07-2017 - 01:30 | 23-12-2016 - 05:59 | |
| CVE-2016-7502 | 6.8 |
The cavs_idct8_add_c function in libavcodec/cavsdsp.c in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when decoding with cavs_decode.
|
01-07-2017 - 01:30 | 23-12-2016 - 05:59 | |
| CVE-2016-7905 | 4.3 |
The read_gab2_sub function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (NULL pointer used) via a crafted AVI file.
|
01-07-2017 - 01:30 | 23-12-2016 - 05:59 | |
| CVE-2016-7785 | 4.3 |
The avi_read_seek function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (assert fault) via a crafted AVI file.
|
01-07-2017 - 01:30 | 23-12-2016 - 05:59 | |
| CVE-2016-7450 | 6.8 |
The ff_log2_16bit_c function in libavutil/intmath.h in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when it decodes a malformed AIFF file.
|
01-07-2017 - 01:30 | 23-12-2016 - 05:59 | |
| CVE-2016-7122 | 4.3 |
The avi_read_nikon function in libavformat/avidec.c in FFmpeg before 3.1.4 is vulnerable to infinite loop when it decodes an AVI file that has a crafted 'nctg' structure.
|
01-07-2017 - 01:30 | 23-12-2016 - 05:59 |