| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-13904 | 4.3 |
FFmpeg 2.8 and 4.2.3 has a use-after-free via a crafted EXTINF duration in an m3u8 file because parse_playlist in libavformat/hls.c frees a pointer, and later that pointer is accessed in av_probe_input_format3 in libavformat/format.c.
|
07-10-2022 - 01:27 | 07-06-2020 - 19:15 | |
| CVE-2019-17542 | 7.5 |
FFmpeg before 4.2 has a heap-based buffer overflow in vqa_decode_chunk because of an out-of-array access in vqa_decode_init in libavcodec/vqavideo.c.
|
21-07-2021 - 11:39 | 14-10-2019 - 02:15 | |
| CVE-2019-13390 | 4.3 |
In FFmpeg 4.1.3, there is a division by zero at adx_write_trailer in libavformat/rawenc.c.
|
27-07-2020 - 19:15 | 07-07-2019 - 22:15 |