Andreas Rheinhardt

5 exploits Active since Nov 2024
CVE-2024-35365 WRITEUP HIGH WRITEUP
FFmpeg n6.1.1 - Double Free in new_stream_audio Function
FFmpeg version n6.1.1 has a double-free vulnerability in the fftools/ffmpeg_mux_init.c component of FFmpeg, specifically within the new_stream_audio function.
CVSS 8.8
CVE-2024-35367 WRITEUP CRITICAL WRITEUP
FFmpeg n6.1.1 - Out-of-bounds Read in VP8 DSP AltiVec Filter
FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_altivec.c, static const vec_s8 h_subpel_filters_outer
CVSS 9.1
CVE-2024-35368 WRITEUP CRITICAL WRITEUP
FFmpeg n7.0 - Double Free in rkmpp_retrieve_frame
FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame function within libavcodec/rkmppdec.c.
CVSS 9.8
CVE-2024-36615 WRITEUP MEDIUM WRITEUP
FFmpeg n7.0 - Race Condition in VP9 Decoder
FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. This could lead to a data race if video encoding parameters were being exported, as the side data would be attached in the decoder thread while being read in the output thread.
CVSS 5.9
CVE-2024-36618 WRITEUP MEDIUM WRITEUP
FFmpeg n6.1.1 - Denial of Service via Integer Overflow in AVI Demuxer
FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library which allows for an integer overflow, potentially resulting in a denial-of-service (DoS) condition.
CVSS 6.2