CVE search results

31 – 40 of 522 results

Detailed view

Sort by:

CVE-2024-36619

Medium priority

Vulnerable

FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows for an integer overflow when handling certain block types, leading to a denial-of-service (DoS) condition.

2 affected packages

libav, ffmpeg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	Not in release	Not in release	Not in release	—
ffmpeg	Vulnerable	Not affected	Not affected	Not affected

CVE-2024-36618

Medium priority

Vulnerable

FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library which allows for an integer overflow, potentially resulting in a denial-of-service (DoS) condition.

2 affected packages

libav, ffmpeg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	Not in release	Not in release	Not in release	—
ffmpeg	Vulnerable	Vulnerable	Vulnerable	Vulnerable

CVE-2024-36617

Medium priority

Some fixes available 4 of 6

FFmpeg n6.1.1 has an integer overflow vulnerability in the FFmpeg CAF decoder.

2 affected packages

libav, ffmpeg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	Not in release	Not in release	Not in release	—
ffmpeg	Vulnerable	Fixed	Fixed	Fixed

CVE-2024-35369

Medium priority

Needs evaluation

In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, a potential security vulnerability exists due to insufficient validation of certain parameters when parsing Speex codec extradata. This vulnerability...

2 affected packages

libav, ffmpeg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	Not in release	Not in release	Not in release	—
ffmpeg	Not affected	Not affected	Not affected	Not affected

CVE-2024-7272

Medium priority

Not affected

A vulnerability, which was classified as critical, was found in FFmpeg up to 5.1.5. This affects the function fill_audiodata of the file /libswresample/swresample.c. The manipulation leads to heap-based buffer overflow. It is...

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Not affected	Not affected	Not affected	Not affected
libav	Not in release	Not in release	Not in release	—

CVE-2024-7055

Medium priority

Vulnerable

A vulnerability was found in FFmpeg up to 7.0.1. It has been classified as critical. This affects the function pnm_decode_frame in the library /libavcodec/pnmdec.c. The manipulation leads to heap-based buffer overflow. It is...

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Vulnerable	Vulnerable	Not affected	Not affected
libav	Not in release	Not in release	Not in release	—

CVE-2024-32230

Medium priority

Some fixes available 5 of 7

FFmpeg 7.0 is vulnerable to Buffer Overflow. There is a negative-size-param bug at libavcodec/mpegvideo_enc.c:1216:21 in load_input_picture in FFmpeg7.0

2 affected packages

libav, ffmpeg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	Not in release	Not in release	Not in release	—
ffmpeg	Fixed	Fixed	Fixed	Fixed

CVE-2024-32229

Medium priority

Ignored

FFmpeg 7.0 contains a heap-buffer-overflow at libavfilter/vf_tiltandshift.c:189:5 in copy_column.

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Not affected	Not affected	Not affected	Not affected
libav	Not in release	Not in release	Not in release	—

CVE-2024-32228

Medium priority

Vulnerable

FFmpeg 7.0 is vulnerable to Buffer Overflow. There is a SEGV at libavcodec/hevcdec.c:2947:22 in hevc_frame_end.

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Vulnerable	Not affected	Not affected	Not affected
libav	Not in release	Not in release	Not in release	—

CVE-2023-51794

Medium priority

Fixed

Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/af_stereowiden.c:120:69.

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Not affected	Fixed	Fixed	Fixed
libav	Not in release	Not in release	Not in release	—

Export to JSON

Results by page:

Search CVE reports