Paul B Mahol

6 exploits Active since Aug 2021
CVE-2021-3566 WRITEUP MEDIUM WRITEUP
ffmpeg < 4.3 - Exposure of Sensitive Information via tty Demuxer
Prior to ffmpeg version 4.3, the tty demuxer did not have a 'read_probe' function assigned to it. By crafting a legitimate "ffconcat" file that references an image, followed by a file the triggers the tty demuxer, the contents of the second file will be copied into the output file verbatim (as long as the `-vcodec copy` option is passed to ffmpeg).
CVSS 5.5
CVE-2021-38114 WRITEUP MEDIUM WRITEUP
FFmpeg 4.4 - Unchecked Return Value in dnxhddec.c init_vlc
libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868.
CVSS 5.5
CVE-2023-50007 WRITEUP MEDIUM WRITEUP
FFmpeg 6.1-3-g466799d4f5 - Stack-based Buffer Overflow in av_samples_set_silence
FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a parameter of negative size in the av_samples_set_silence function in thelibavutil/samplefmt.c:260:9 component.
CVSS 4.0
CVE-2023-50008 WRITEUP HIGH WRITEUP
FFmpeg 6.1-3-g466799d4f5 - Memory Consumption via Colorcorrect Filter
FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the colorcorrect filter, in the av_malloc function in libavutil/mem.c:105:9 component.
CVSS 7.8
CVE-2024-22861 WRITEUP HIGH WRITEUP
FFmpeg < 6.1 - Denial of Service via avcodec/osq Module Integer Overflow
Integer overflow vulnerability in FFmpeg before n6.1, allows attackers to cause a denial of service (DoS) via the avcodec/osq module.
CVSS 7.5
CVE-2024-36619 WRITEUP MEDIUM WRITEUP
FFmpeg n6.1.1 - Denial of Service via WAVARC Decoder Integer Overflow
FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows for an integer overflow when handling certain block types, leading to a denial-of-service (DoS) condition.
CVSS 5.3