ffmpeg

489 tracked vulnerabilities.

CVE-2016-7555 MEDIUM
FFmpeg < 3.1.3 - Memory Leak in AVI Decoder via Crafted strh Structure
Dec 23, 2016
CVSS 5.5
EPSS 0.00
CVE-2016-7502 HIGH
FFmpeg < 3.1.3 - Out-of-bounds Read in cavs_idct8_add_c
Dec 23, 2016
CVSS 7.8
EPSS 0.00
CVE-2016-7450 HIGH
FFmpeg < 3.1.3 - Out-of-bounds Read in AIFF File Decoding
Dec 23, 2016
CVSS 7.8
EPSS 0.00
CVE-2016-7122 MEDIUM
FFmpeg < 3.1.3 - Denial of Service via Crafted AVI 'nctg' Structure
Dec 23, 2016
CVSS 5.5
EPSS 0.00
CVE-2016-6881 MEDIUM
FFmpeg < 3.1.3 - Denial of Service via Crafted SWF File
Dec 23, 2016
CVSS 5.5
EPSS 0.00
CVE-2016-6671 HIGH
FFmpeg < 3.1.2 - Remote Code Execution via Crafted SWF File
Dec 23, 2016
CVSS 7.8
EPSS 0.01
CVE-2016-3062 HIGH
Libav < 11.7 and FFmpeg < 0.11 - Remote Code Execution via MP4 dref Box Entries
Jun 16, 2016
CVSS 8.8
EPSS 0.03
CVE-2016-2330 HIGH
FFmpeg < 2.8.6 - Denial of Service via Crafted TGA File
Feb 12, 2016
CVSS 8.8
EPSS 0.01
CVE-2016-2329 HIGH
Opensuse Leap < 2.8.5 - Memory Corruption
Feb 12, 2016
CVSS 8.8
EPSS 0.01
CVE-2016-2328 HIGH
FFmpeg < 2.8.6 - Denial of Service via Crafted .cine File
Feb 12, 2016
CVSS 8.8
EPSS 0.01
CVE-2016-2327 HIGH
FFmpeg < 2.8.4 - Denial of Service via Crafted AVI File
Feb 12, 2016
CVSS 8.8
EPSS 0.01
CVE-2016-2326 HIGH
Debian Linux < 2.8.4 - Integer Overflow
Feb 12, 2016
CVSS 8.8
EPSS 0.01
CVE-2016-2213 MEDIUM
FFmpeg < 2.8.6 - Denial of Service via JPEG 2000 Tile Decoding
Feb 03, 2016
CVSS 6.5
EPSS 0.00
CVE-2016-1898 MEDIUM
FFmpeg 2.x - Unauthenticated Arbitrary File Read via HLS M3U8 Subfile Protocol
Jan 15, 2016
CVSS 5.5
EPSS 0.28
CVE-2016-1897 MEDIUM
FFmpeg 2.x - Exposure of Sensitive Information via Concat Protocol in HLS M3U8 File
Jan 15, 2016
CVSS 5.5
EPSS 0.52
CVE-2015-1208 MEDIUM
FFmpeg < 2.4.6 - Integer Underflow in mov_read_default Function
Jan 09, 2018
CVSS 5.5
EPSS 0.00
CVE-2015-8663 HIGH
FFmpeg - Denial of Service via Crafted .mov File
Dec 24, 2015
CVSS 8.3
EPSS 0.01
CVE-2015-8662 HIGH
FFmpeg < 2.8.3 - Denial of Service via JPEG 2000 DWT Decoding
Dec 24, 2015
CVSS 7.3
EPSS 0.01
CVE-2015-8661 HIGH
FFmpeg < 2.8.3 - Denial of Service via H.264 Slice Header Thread Validation
Dec 24, 2015
CVSS 8.3
EPSS 0.01
CVE-2015-8365
FFmpeg <2.6.5, 2.7.x <2.7.3, 2.8.x <=2.8.2 - DoS
Nov 26, 2015
EPSS 0.01
CVE-2015-8364
FFmpeg <2.6.5, <2.7.3, <=2.8.2 - DoS
Nov 26, 2015
EPSS 0.01
CVE-2015-8363
FFmpeg <2.6.5, <2.7.x-2.7.3, <2.8.x-2.8.2 - DoS
Nov 26, 2015
EPSS 0.00
CVE-2015-8219
FFmpeg < 2.8.2 - Denial of Service via JPEG 2000 Tile Coordinate Mismanagement
Nov 17, 2015
EPSS 0.00
CVE-2015-8218
FFmpeg < 2.8.2 - Denial of Service via Crafted CCITT FAX Data
Nov 17, 2015
EPSS 0.00
CVE-2015-8217
FFmpeg < 2.8.2 - Denial of Service via HEVC Chroma Format Indicator
Nov 17, 2015
EPSS 0.01
Products
ffmpeg 480 FFmpeg 8 MPEG-DASH 1 lavf_demuxer 1 libavcodec 1 libswresample 1
Quick Filters
Critical CVEs With Exploits In CISA KEV