This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Ffmpeg First view 2015-09-05
Product Ffmpeg Last view 2022-11-13
Version 2.7.0 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:ffmpeg:ffmpeg

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
  Date Alert Description
8.1 2022-11-13 CVE-2022-3965

A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smc_encode_stream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encoder. The manipulation of the argument y_size leads to out-of-bounds read. The attack can be initiated remotely. The name of the patch is 13c13109759090b7f7182480d075e13b36ed8edd. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-213544.

8.1 2022-11-13 CVE-2022-3964

A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the argument y_size leads to out-of-bounds read. It is possible to initiate the attack remotely. The name of the patch is 92f9b28ed84a77138105475beba16c146bdaf984. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-213543.

5.5 2022-05-02 CVE-2022-1475

An integer overflow vulnerability was found in FFmpeg versions before 4.4.2 and before 5.0.1 in g729_parse() in llibavcodec/g729_parser.c when processing a specially crafted file.

7.5 2021-08-12 CVE-2021-38291

FFmpeg version (git commit de8e6e67e7523e48bb27ac224a0b446df05e1640) suffers from a an assertion failure at src/libavutil/mathematics.c.

5.5 2021-08-05 CVE-2021-3566

Prior to ffmpeg version 4.3, the tty demuxer did not have a 'read_probe' function assigned to it. By crafting a legitimate "ffconcat" file that references an image, followed by a file the triggers the tty demuxer, the contents of the second file will be copied into the output file verbatim (as long as the `-vcodec copy` option is passed to ffmpeg).

7.5 2021-01-04 CVE-2020-35965

decode_frame in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations.

8.8 2020-06-16 CVE-2020-14212

FFmpeg through 4.3 has a heap-based buffer overflow in avio_get_str in libavformat/aviobuf.c because dnn_backend_native.c calls ff_dnn_load_model_native and a certain index check is omitted.

9.8 2019-10-13 CVE-2019-17542

FFmpeg before 4.2 has a heap-based buffer overflow in vqa_decode_chunk because of an out-of-array access in vqa_decode_init in libavcodec/vqavideo.c.

9.8 2019-10-13 CVE-2019-17539

In FFmpeg before 4.2, avcodec_open2 in libavcodec/utils.c allows a NULL pointer dereference and possibly unspecified other impact when there is no valid close function pointer.

8.8 2019-09-05 CVE-2019-15942

FFmpeg through 4.2 has a "Conditional jump or move depends on uninitialised value" issue in h2645_parse because alloc_rbsp_buffer in libavcodec/h2645_parse.c mishandles rbsp_buffer.

9.8 2019-06-04 CVE-2019-12730

aa_read_header in libavformat/aadec.c in FFmpeg before 3.2.14 and 4.x before 4.1.4 does not check for sscanf failure and consequently allows use of uninitialized variables.

8.8 2019-04-18 CVE-2019-11339

The studio profile decoder in libavcodec/mpeg4videodec.c in FFmpeg 4.0 before 4.0.4 and 4.1 before 4.1.2 allows remote attackers to cause a denial of service (out-of-array access) or possibly have unspecified other impact via crafted MPEG-4 video data.

7.5 2018-08-23 CVE-2018-15822

The flv_write_packet function in libavformat/flvenc.c in FFmpeg through 2.8 does not check for an empty audio packet, leading to an assertion failure.

6.5 2018-07-23 CVE-2018-1999015

FFmpeg before commit 5aba5b89d0b1d73164d3b81764828bb8b20ff32a contains an out of array read vulnerability in ASF_F format demuxer that can result in heap memory reading. This attack appear to be exploitable via specially crafted ASF file that has to provided as input. This vulnerability appears to have been fixed in 5aba5b89d0b1d73164d3b81764828bb8b20ff32a and later.

6.5 2018-07-23 CVE-2018-1999014

FFmpeg before commit bab0716c7f4793ec42e05a5aa7e80d82a0dd4e75 contains an out of array access vulnerability in MXF format demuxer that can result in DoS. This attack appear to be exploitable via specially crafted MXF file which has to be provided as input. This vulnerability appears to have been fixed in bab0716c7f4793ec42e05a5aa7e80d82a0dd4e75 and later.

6.5 2018-07-23 CVE-2018-1999013

FFmpeg before commit a7e032a277452366771951e29fd0bf2bd5c029f0 contains a use-after-free vulnerability in the realmedia demuxer that can result in vulnerability allows attacker to read heap memory. This attack appear to be exploitable via specially crafted RM file has to be provided as input. This vulnerability appears to have been fixed in a7e032a277452366771951e29fd0bf2bd5c029f0 and later.

6.5 2018-07-23 CVE-2018-1999012

FFmpeg before commit 9807d3976be0e92e4ece3b4b1701be894cd7c2e1 contains a CWE-835: Infinite loop vulnerability in pva format demuxer that can result in a Vulnerability that allows attackers to consume excessive amount of resources like CPU and RAM. This attack appear to be exploitable via specially crafted PVA file has to be provided as input. This vulnerability appears to have been fixed in 9807d3976be0e92e4ece3b4b1701be894cd7c2e1 and later.

8.8 2018-07-23 CVE-2018-1999011

FFmpeg before commit 2b46ebdbff1d8dec7a3d8ea280a612b91a582869 contains a Buffer Overflow vulnerability in asf_o format demuxer that can result in heap-buffer-overflow that may result in remote code execution. This attack appears to be exploitable via specially crafted ASF file that has to be provided as input to FFmpeg. This vulnerability appears to have been fixed in 2b46ebdbff1d8dec7a3d8ea280a612b91a582869 and later.

9.8 2018-07-23 CVE-2018-1999010

FFmpeg before commit cced03dd667a5df6df8fd40d8de0bff477ee02e8 contains multiple out of array access vulnerabilities in the mms protocol that can result in attackers accessing out of bound data. This attack appear to be exploitable via network connectivity. This vulnerability appears to have been fixed in cced03dd667a5df6df8fd40d8de0bff477ee02e8 and later.

6.5 2018-07-19 CVE-2018-14394

libavformat/movenc.c in FFmpeg before 4.0.2 allows attackers to cause a denial of service (application crash caused by a divide-by-zero error) with a user crafted Waveform audio file.

6.5 2018-04-24 CVE-2018-7751

The svg_probe function in libavformat/img2dec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (Infinite Loop) via a crafted XML file.

6.5 2018-04-10 CVE-2018-10001

The decode_init function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via an AVI file.

8.8 2018-04-07 CVE-2018-9841

The export function in libavfilter/vf_signature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out-of-array access) or possibly have unspecified other impact via a long filename.

6.5 2018-02-28 CVE-2018-7557

The decode_init function in libavcodec/utvideodec.c in FFmpeg 2.8 through 3.4.2 allows remote attackers to cause a denial of service (Out of array read) via an AVI file with crafted dimensions within chroma subsampling data.

6.5 2018-02-11 CVE-2018-6912

The decode_plane function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via a crafted AVI file.

CWE : Common Weakness Enumeration

%idName
29% (24) CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer
20% (17) CWE-125 Out-of-bounds Read
10% (9) CWE-20 Improper Input Validation
9% (8) CWE-787 Out-of-bounds Write
4% (4) CWE-17 Code
3% (3) CWE-476 NULL Pointer Dereference
3% (3) CWE-399 Resource Management Errors
3% (3) CWE-190 Integer Overflow or Wraparound
2% (2) CWE-617 Reachable Assertion
2% (2) CWE-200 Information Exposure
2% (2) CWE-189 Numeric Errors
1% (1) CWE-416 Use After Free
1% (1) CWE-415 Double Free
1% (1) CWE-369 Divide By Zero
1% (1) CWE-362 Race Condition
1% (1) CWE-252 Unchecked Return Value

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
id Description
2019-01-08 Name: The remote Debian host is missing a security update.
File: debian_DLA-1630.nasl - Type: ACT_GATHER_INFO
2018-12-21 Name: The remote Debian host is missing a security update.
File: debian_DLA-1611.nasl - Type: ACT_GATHER_INFO
2018-11-27 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201811-19.nasl - Type: ACT_GATHER_INFO
2018-07-30 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_5ccbb2f8c79811e7a633009c02a2ab30.nasl - Type: ACT_GATHER_INFO
2018-07-18 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-4249.nasl - Type: ACT_GATHER_INFO
2017-11-28 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-4049.nasl - Type: ACT_GATHER_INFO
2017-11-01 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-4012.nasl - Type: ACT_GATHER_INFO
2017-10-23 Name: The remote Debian host is missing a security update.
File: debian_DLA-1142.nasl - Type: ACT_GATHER_INFO
2017-10-16 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_ed73829daf6d11e7a633009c02a2ab30.nasl - Type: ACT_GATHER_INFO
2017-10-11 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3996.nasl - Type: ACT_GATHER_INFO
2017-09-18 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2017-1068.nasl - Type: ACT_GATHER_INFO
2017-09-18 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2017-1067.nasl - Type: ACT_GATHER_INFO
2017-08-29 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3957.nasl - Type: ACT_GATHER_INFO
2017-05-30 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2017-631.nasl - Type: ACT_GATHER_INFO
2017-05-10 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201705-08.nasl - Type: ACT_GATHER_INFO
2017-04-28 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2017-524.nasl - Type: ACT_GATHER_INFO
2017-04-10 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2017-449.nasl - Type: ACT_GATHER_INFO
2017-01-30 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201701-71.nasl - Type: ACT_GATHER_INFO
2016-10-19 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2016-1203.nasl - Type: ACT_GATHER_INFO
2016-06-20 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201606-09.nasl - Type: ACT_GATHER_INFO
2016-04-05 Name: The remote Ubuntu host is missing one or more security-related patches.
File: ubuntu_USN-2944-1.nasl - Type: ACT_GATHER_INFO
2016-03-14 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201603-09.nasl - Type: ACT_GATHER_INFO
2016-03-07 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3506.nasl - Type: ACT_GATHER_INFO
2016-02-24 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2016-246.nasl - Type: ACT_GATHER_INFO
2016-02-08 Name: The remote FreeBSD host is missing one or more security-related updates.
File: freebsd_pkg_6ac79ed8ccc211e5932b5404a68ad561.nasl - Type: ACT_GATHER_INFO