Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2018-7557 | 4.3 |
The decode_init function in libavcodec/utvideodec.c in FFmpeg 2.8 through 3.4.2 allows remote attackers to cause a denial of service (Out of array read) via an AVI file with crafted dimensions within chroma subsampling data.
|
07-10-2022 - 02:10 | 28-02-2018 - 07:29 | |
CVE-2019-17542 | 7.5 |
FFmpeg before 4.2 has a heap-based buffer overflow in vqa_decode_chunk because of an out-of-array access in vqa_decode_init in libavcodec/vqavideo.c.
|
21-07-2021 - 11:39 | 14-10-2019 - 02:15 | |
CVE-2019-17539 | 7.5 |
In FFmpeg before 4.2, avcodec_open2 in libavcodec/utils.c allows a NULL pointer dereference and possibly unspecified other impact when there is no valid close function pointer.
|
10-06-2021 - 13:58 | 14-10-2019 - 02:15 | |
CVE-2019-12730 | 7.5 |
aa_read_header in libavformat/aadec.c in FFmpeg before 3.2.14 and 4.x before 4.1.4 does not check for sscanf failure and consequently allows use of uninitialized variables.
|
24-08-2020 - 17:37 | 04-06-2019 - 14:29 | |
CVE-2019-13312 | 6.8 |
block_cmp() in libavcodec/zmbvenc.c in FFmpeg 4.1.3 has a heap-based buffer over-read.
|
28-07-2020 - 22:15 | 05-07-2019 - 01:15 | |
CVE-2019-13390 | 4.3 |
In FFmpeg 4.1.3, there is a division by zero at adx_write_trailer in libavformat/rawenc.c.
|
27-07-2020 - 19:15 | 07-07-2019 - 22:15 | |
CVE-2018-6912 | 4.3 |
The decode_plane function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via a crafted AVI file.
|
30-03-2020 - 17:15 | 12-02-2018 - 02:29 | |
CVE-2018-9841 | 6.8 |
The export function in libavfilter/vf_signature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out-of-array access) or possibly have unspecified other impact via a long filename.
|
30-03-2020 - 17:15 | 07-04-2018 - 07:29 | |
CVE-2018-7751 | 4.3 |
The svg_probe function in libavformat/img2dec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (Infinite Loop) via a crafted XML file.
|
30-03-2020 - 17:15 | 24-04-2018 - 06:29 | |
CVE-2018-10001 | 4.3 |
The decode_init function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via an AVI file.
|
30-03-2020 - 17:15 | 11-04-2018 - 03:29 |