Debian Ffmpeg vulnerabilities

CVE-2013-7019 [MEDIUM] CVE-2013-7019: ffmpeg - The get_cox function in libavcodec/jpeg2000dec.c in FFmpeg before 2.1 does not p... The get_cox function in libavcodec/jpeg2000dec.c in FFmpeg before 2.1 does not properly validate the reduction factor, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted JPEG2000 data. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: reso

CVE-2013-3673 [MEDIUM] CVE-2013-3673: ffmpeg - The gif_decode_frame function in gifdec.c in libavcodec in FFmpeg before 1.2.1 d... The gif_decode_frame function in gifdec.c in libavcodec in FFmpeg before 1.2.1 does not properly manage the disposal methods of frames, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) via crafted GIF data. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2013-0845 [CRITICAL] CVE-2013-0845: ffmpeg - libavcodec/alsdec.c in FFmpeg before 1.0.4 allows remote attackers to have an un... libavcodec/alsdec.c in FFmpeg before 1.0.4 allows remote attackers to have an unspecified impact via a crafted block length, which triggers an out-of-bounds write. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2013-0878 [CRITICAL] CVE-2013-0878: ffmpeg - The advance_line function in libavcodec/targa.c in FFmpeg before 1.1.3 allows re... The advance_line function in libavcodec/targa.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via crafted Targa image data, related to an out-of-bounds array access. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2013-7023 [MEDIUM] CVE-2013-7023: ffmpeg - The ff_combine_frame function in libavcodec/parser.c in FFmpeg before 2.1 does n... The ff_combine_frame function in libavcodec/parser.c in FFmpeg before 2.1 does not properly handle certain memory-allocation errors, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted data. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie:

CVE-2013-0870 [CRITICAL] CVE-2013-0870: ffmpeg - The 'vp3_decode_frame' function in FFmpeg 1.1.4 moves threads check out of heade... The 'vp3_decode_frame' function in FFmpeg 1.1.4 moves threads check out of header packet type check. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2013-0852 [CRITICAL] CVE-2013-0852: ffmpeg - The parse_picture_segment function in libavcodec/pgssubdec.c in FFmpeg before 1.... The parse_picture_segment function in libavcodec/pgssubdec.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted RLE data, which triggers an out-of-bounds array access. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2013-7017 [MEDIUM] CVE-2013-7017: ffmpeg - libavcodec/jpeg2000.c in FFmpeg before 2.1 allows remote attackers to cause a de... libavcodec/jpeg2000.c in FFmpeg before 2.1 allows remote attackers to cause a denial of service (invalid pointer dereference) or possibly have unspecified other impact via crafted JPEG2000 data. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2013-0851 [CRITICAL] CVE-2013-0851: ffmpeg - The decode_frame function in libavcodec/eamad.c in FFmpeg before 1.1 allows remo... The decode_frame function in libavcodec/eamad.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted Electronic Arts Madcow video data, which triggers an out-of-bounds array access. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2013-0853 [CRITICAL] CVE-2013-0853: ffmpeg - The wavpack_decode_frame function in libavcodec/wavpack.c in FFmpeg before 1.1 a... The wavpack_decode_frame function in libavcodec/wavpack.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted WavPack data, which triggers an out-of-bounds array access, possibly due to an off-by-one error. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2013-4264 [MEDIUM] CVE-2013-4264: ffmpeg - The kempf_decode_tile function in libavcodec/g2meet.c in FFmpeg before 2.0.1 all... The kempf_decode_tile function in libavcodec/g2meet.c in FFmpeg before 2.0.1 allows remote attackers to cause a denial of service (out-of-bounds heap write) via a G2M4 encoded file. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2013-0863 [CRITICAL] CVE-2013-0863: ffmpeg - Buffer overflow in the rle_decode function in libavcodec/sanm.c in FFmpeg before... Buffer overflow in the rle_decode function in libavcodec/sanm.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.2 allows remote attackers to have an unspecified impact via crafted LucasArts Smush video data. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2013-0861 [MEDIUM] CVE-2013-0861: ffmpeg - The avcodec_decode_audio4 function in libavcodec/utils.c in FFmpeg before 1.0.4 ... The avcodec_decode_audio4 function in libavcodec/utils.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.1 allows remote attackers to trigger memory corruption via vectors related to the channel layout. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2013-0874 [CRITICAL] CVE-2013-0874: ffmpeg - The (1) doubles2str and (2) shorts2str functions in libavcodec/tiff.c in FFmpeg ... The (1) doubles2str and (2) shorts2str functions in libavcodec/tiff.c in FFmpeg before 1.1.3 allow remote attackers to have an unspecified impact via a crafted TIFF image, related to an out-of-bounds array access. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2012-2788 [CRITICAL] CVE-2012-2788: ffmpeg - Unspecified vulnerability in the avi_read_packet function in libavformat/avidec.... Unspecified vulnerability in the avi_read_packet function in libavformat/avidec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to an "out of array read" when a "packet is shrunk." Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved

CVE-2012-2777 [CRITICAL] CVE-2012-2777: ffmpeg - Unspecified vulnerability in the decode_pic function in libavcodec/cavsdec.c in ... Unspecified vulnerability in the decode_pic function in libavcodec/cavsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing in CAVS," a different vulnerability than CVE-2012-2784. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2

CVE-2012-2801 [CRITICAL] CVE-2012-2801: ffmpeg - Unspecified vulnerability in libavcodec/avs.c in FFmpeg before 0.11, and Libav 0... Unspecified vulnerability in libavcodec/avs.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to dimensions and "out of array writes." Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2

CVE-2012-2797 [CRITICAL] CVE-2012-2797: ffmpeg - Unspecified vulnerability in the decode_frame_mp3on4 function in libavcodec/mpeg... Unspecified vulnerability in the decode_frame_mp3on4 function in libavcodec/mpegaudiodec.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.5 has unknown impact and attack vectors related to a calculation that prevents a frame from being "large enough." Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fix

CVE-2012-2773 [CRITICAL] CVE-2012-2773: ffmpeg - Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack ... Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2778, CVE-2012-2780, and CVE-2012-2781. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2.4.1-1) trixie: resolved (

CVE-2012-2779 [CRITICAL] CVE-2012-2779: ffmpeg - Unspecified vulnerability in the decode_frame function in libavcodec/indeo5.c in... Unspecified vulnerability in the decode_frame function in libavcodec/indeo5.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to an invalid "gop header" and decoding in a "half initialized context." Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1)