Ffmpeg : Security Vulnerabilities, CVEs, CVSS score between 6 and 7.99
Integer overflow vulnerability in FFmpeg before n6.1, allows attackers to cause a denial of service (DoS) via the avcodec/osq module.
Max CVSS
7.5
EPSS Score
0.05%
Published
2024-01-27
Updated
2024-02-02
Buffer Overflow vulnerability in Ffmpeg before github commit 4565747056a11356210ed8edcecb920105e40b60 allows a remote attacker to achieve an out-of-array write, execute arbitrary code, and cause a denial of service (DoS) via the ref_pic_list_struct function in libavcodec/evc_ps.c
Max CVSS
7.8
EPSS Score
0.14%
Published
2023-11-16
Updated
2023-11-29
An issue was discovered in the FFmpeg package, where vp3_decode_frame in libavcodec/vp3.c lacks check of the return value of av_malloc() and will cause a null pointer dereference, impacting availability.
Max CVSS
7.5
EPSS Score
0.14%
Published
2022-12-16
Updated
2023-06-13
FFmpeg version (git commit de8e6e67e7523e48bb27ac224a0b446df05e1640) suffers from a an assertion failure at src/libavutil/mathematics.c.
Max CVSS
7.5
EPSS Score
0.41%
Published
2021-08-12
Updated
2023-12-23
An issue was discovered in decode_frame in libavcodec/tiff.c in FFmpeg version 4.3, allows remote attackers to cause a denial of service (DoS).
Max CVSS
7.5
EPSS Score
0.10%
Published
2023-08-11
Updated
2023-08-16
decode_frame in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations.
Max CVSS
7.5
EPSS Score
0.87%
Published
2021-01-04
Updated
2021-11-05
track_header in libavformat/vividas.c in FFmpeg 4.3.1 has an out-of-bounds write because of incorrect extradata packing.
Max CVSS
6.5
EPSS Score
0.28%
Published
2021-01-03
Updated
2022-08-06
Buffer overflow vulnerability in sniff_channel_order function in aacdec_template.c in ffmpeg 3.1.2, allows attackers to execute arbitrary code (local).
Max CVSS
7.8
EPSS Score
0.17%
Published
2021-03-30
Updated
2021-04-02
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the config_input function in af_acrossover.c.
Max CVSS
6.5
EPSS Score
0.09%
Published
2021-06-02
Updated
2021-06-07
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c.
Max CVSS
6.5
EPSS Score
0.25%
Published
2021-06-02
Updated
2021-11-30
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the filter_frame function in vf_tile.c.
Max CVSS
6.5
EPSS Score
0.11%
Published
2021-06-02
Updated
2021-06-07
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c.
Max CVSS
6.5
EPSS Score
0.25%
Published
2021-06-02
Updated
2021-11-30
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c.
Max CVSS
6.5
EPSS Score
0.10%
Published
2021-06-02
Updated
2021-11-30
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c.
Max CVSS
6.5
EPSS Score
0.10%
Published
2021-06-02
Updated
2021-11-30
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the url_open_dyn_buf_internal function in libavformat/aviobuf.c.
Max CVSS
6.5
EPSS Score
0.10%
Published
2021-06-01
Updated
2021-11-30
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak at the fifo_alloc_common function in libavutil/fifo.c.
Max CVSS
6.5
EPSS Score
0.09%
Published
2021-06-01
Updated
2021-06-07
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak is affected by: memory leak in the link_filter_inouts function in libavfilter/graphparser.c.
Max CVSS
6.5
EPSS Score
0.10%
Published
2021-06-01
Updated
2021-11-30
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_buffersrc_add_frame_flags function in buffersrc.
Max CVSS
6.5
EPSS Score
0.10%
Published
2021-06-01
Updated
2021-11-30
A Denial of Service vulnerability exists in FFmpeg 4.2 idue to a memory leak in the v_frame_alloc function in frame.c.
Max CVSS
6.5
EPSS Score
0.09%
Published
2021-06-01
Updated
2021-06-07
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the inavi_add_ientry function.
Max CVSS
6.5
EPSS Score
0.09%
Published
2021-06-01
Updated
2021-06-07
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_v4l2_m2m_create_context function in v4l2_m2m.c.
Max CVSS
6.5
EPSS Score
0.09%
Published
2021-06-01
Updated
2021-06-07
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in avcodec_alloc_context3 at options.c.
Max CVSS
6.5
EPSS Score
0.38%
Published
2021-06-01
Updated
2021-11-30
A heap-based Buffer Overflow Vulnerability exists FFmpeg 4.2 at libavfilter/vf_vmafmotion.c in convolution_y_8bit, which could let a remote malicious user cause a Denial of Service.
Max CVSS
6.5
EPSS Score
0.28%
Published
2021-05-27
Updated
2022-10-26
Buffer Overflow vulnerability exists in FFmpeg 4.2 in filter_vertically_8 at libavfilter/vf_avgblur.c, which could cause a remote Denial of Service.
Max CVSS
6.5
EPSS Score
0.25%
Published
2021-05-26
Updated
2021-11-05
Buffer Overflow vulnerability exists in FFmpeg 4.2 in the config_input function at libavfilter/af_tremolo.c, which could let a remote malicious user cause a Denial of Service.
Max CVSS
6.5
EPSS Score
0.19%
Published
2021-05-26
Updated
2021-11-05