James Almer

2 exploits Active since Aug 2021
CVE-2021-38114 WRITEUP MEDIUM WRITEUP
FFmpeg 4.4 - Unchecked Return Value in dnxhddec.c init_vlc
libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868.
CVSS 5.5
CVE-2024-35369 WRITEUP MEDIUM WRITEUP
FFmpeg n6.1.1 - Integer Overflow in Speex Extradata Parsing
In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, a potential security vulnerability exists due to insufficient validation of certain parameters when parsing Speex codec extradata. This vulnerability could lead to integer overflow conditions, potentially resulting in undefined behavior or crashes during the decoding process.
CVSS 5.5