Search CVE reports
241 – 250 of 356 results
The decode_frame_ilbm function in libavcodec/iff.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a crafted height value in IFF PBM/ILBM bitmap data.
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ffmpeg | — | — | — | — | — |
| ffmpeg-extra | — | — | — | — | — |
| libav | — | — | — | — | — |
| libav-extra | — | — | — | — | — |
The lpc_prediction function in libavcodec/alac.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted Apple Lossless Audio Codec (ALAC) data, related to a large nb_samples value.
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ffmpeg | — | — | — | — | — |
| ffmpeg-extra | — | — | — | — | — |
| libav | — | — | — | — | — |
| libav-extra | — | — | — | — | — |
Integer overflow in the alac_decode_close function in libavcodec/alac.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a large number of samples per frame in Apple Lossless Audio Codec (ALAC) data,...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ffmpeg | — | — | — | — | — |
| ffmpeg-extra | — | — | — | — | — |
| libav | — | — | — | — | — |
| libav-extra | — | — | — | — | — |
The mjpeg_decode_scan_progressive_ac function in libavcodec/mjpegdec.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted MJPEG data.
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ffmpeg | — | — | — | — | — |
| ffmpeg-extra | — | — | — | — | — |
| libav | — | — | — | — | — |
| libav-extra | — | — | — | — | — |
The wavpack_decode_frame function in libavcodec/wavpack.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted WavPack data, which triggers an out-of-bounds array access, possibly due to an...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ffmpeg | — | — | — | — | — |
| ffmpeg-extra | — | — | — | — | — |
| libav | — | — | — | — | — |
| libav-extra | — | — | — | — | — |
The parse_picture_segment function in libavcodec/pgssubdec.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted RLE data, which triggers an out-of-bounds array access.
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ffmpeg | — | — | — | — | — |
| ffmpeg-extra | — | — | — | — | — |
| libav | — | — | — | — | — |
| libav-extra | — | — | — | — | — |
The decode_frame function in libavcodec/eamad.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted Electronic Arts Madcow video data, which triggers an out-of-bounds array access.
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ffmpeg | — | — | — | — | — |
| ffmpeg-extra | — | — | — | — | — |
| libav | — | — | — | — | — |
| libav-extra | — | — | — | — | — |
The decode_slice_header function in libavcodec/h264.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted H.264 data, which triggers an out-of-bounds array access.
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ffmpeg | — | — | — | — | — |
| ffmpeg-extra | — | — | — | — | — |
| libav | — | — | — | — | — |
| libav-extra | — | — | — | — | — |
The roq_decode_init function in libavcodec/roqvideodec.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a crafted (1) width or (2) height dimension that is not a multiple of sixteen in id RoQ video data.
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ffmpeg | — | — | — | — | — |
| ffmpeg-extra | — | — | — | — | — |
| libav | — | — | — | — | — |
| libav-extra | — | — | — | — | — |
The decode_init function in libavcodec/huffyuv.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via a crafted width in huffyuv data with the predictor set to median and the colorspace set to YUV422P,...
4 affected packages
ffmpeg, ffmpeg-extra, libav, libav-extra
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ffmpeg | — | — | — | — | — |
| ffmpeg-extra | — | — | — | — | — |
| libav | — | — | — | — | — |
| libav-extra | — | — | — | — | — |