Debian Ffmpeg vulnerabilities

508 known vulnerabilities affecting debian/ffmpeg.

Total CVEs

508

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL60HIGH117MEDIUM118LOW213

Vulnerabilities

Page 21 of 26

CVE-2012-2776CRITICALCVSS 10.0fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-2776 [CRITICAL] CVE-2012-2776: ffmpeg - Unspecified vulnerability in the decode_cell_data function in libavcodec/indeo3.... Unspecified vulnerability in the decode_cell_data function in libavcodec/indeo3.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.4 has unknown impact and attack vectors, related to an "out of picture write." Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2

debian

CVE-2012-2781CRITICALCVSS 9.8fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-2781 [CRITICAL] CVE-2012-2781: ffmpeg - Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack ... Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, and CVE-2012-2780. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2.4.1-1) trixie: resolved (

debian

CVE-2012-2778CRITICALCVSS 9.8fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-2778 [CRITICAL] CVE-2012-2778: ffmpeg - Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack ... Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2780, and CVE-2012-2781. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2.4.1-1) trixie: resolved (

debian

CVE-2012-2784CRITICALCVSS 10.0fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-2784 [CRITICAL] CVE-2012-2784: ffmpeg - Unspecified vulnerability in the decode_pic function in libavcodec/cavsdec.c in ... Unspecified vulnerability in the decode_pic function in libavcodec/cavsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing in CAVS," a different vulnerability than CVE-2012-2777. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2

debian

CVE-2012-2771CRITICALCVSS 9.8fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-2771 [CRITICAL] CVE-2012-2771: ffmpeg - Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack ... Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2773, CVE-2012-2778, CVE-2012-2780, and CVE-2012-2781. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2.4.1-1) trixie: resolved (

debian

CVE-2012-2803CRITICALCVSS 10.0fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-2803 [CRITICAL] CVE-2012-2803: ffmpeg - Double free vulnerability in the mpeg_decode_frame function in libavcodec/mpeg12... Double free vulnerability in the mpeg_decode_frame function in libavcodec/mpeg12.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, has unknown impact and attack vectors, related to resetting the data size value. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-

debian

CVE-2012-2772CRITICALCVSS 10.0fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-2772 [CRITICAL] CVE-2012-2772: ffmpeg - Unspecified vulnerability in the ff_rv34_decode_frame function in libavcodec/rv3... Unspecified vulnerability in the ff_rv34_decode_frame function in libavcodec/rv34.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing with frame threading." Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (f

debian

CVE-2012-2783CRITICALCVSS 10.0fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-2783 [CRITICAL] CVE-2012-2783: ffmpeg - Unspecified vulnerability in libavcodec/vp56.c in FFmpeg before 0.11, and Libav ... Unspecified vulnerability in libavcodec/vp56.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, has unknown impact and attack vectors, related to "freeing the returned frame." Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2.4.1-1)

debian

CVE-2012-2780CRITICALCVSS 9.8fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-2780 [CRITICAL] CVE-2012-2780: ffmpeg - Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack ... Unspecified vulnerability in FFmpeg before 0.10.3 has unknown impact and attack vectors, a different vulnerability than CVE-2012-2771, CVE-2012-2773, CVE-2012-2778, and CVE-2012-2781. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2.4.1-1) trixie: resolved (

debian

CVE-2012-2775CRITICALCVSS 10.0fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-2775 [CRITICAL] CVE-2012-2775: ffmpeg - Unspecified vulnerability in the read_var_block_data function in libavcodec/alsd... Unspecified vulnerability in the read_var_block_data function in libavcodec/alsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to a large order and an "out of array write in quant_cof." Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky:

debian

CVE-2012-2804CRITICALCVSS 10.0fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-2804 [CRITICAL] CVE-2012-2804: ffmpeg - Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 and Libav... Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.5 has unknown impact and attack vectors, related to "reallocation code" and the luma height and width. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2.4.1-1) t

debian

CVE-2012-5150HIGHCVSS 7.5fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-5150 [HIGH] CVE-2012-5150: ffmpeg - Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote ... Use-after-free vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving seek operations on video data. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2

debian

CVE-2012-2805HIGHCVSS 7.5fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-2805 [HIGH] CVE-2012-2805: ffmpeg - Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a deni... Unspecified vulnerability in FFMPEG 0.10 allows remote attackers to cause a denial of service. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2.4.1-1) trixie: resolved (fixed in 7:2.4.1-1)

debian

CVE-2012-5359HIGHCVSS 8.8fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-5359 [HIGH] CVE-2012-5359: ffmpeg - Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary co... Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary code via a crafted ASF file. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2.4.1-1) trixie: resolved (fixed in 7:2.4.1-1)

debian

CVE-2012-5360HIGHCVSS 8.8fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-5360 [HIGH] CVE-2012-5360: ffmpeg - Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary co... Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary code via a crafted QT file. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2.4.1-1) trixie: resolved (fixed in 7:2.4.1-1)

debian

CVE-2012-5361HIGHCVSS 7.8fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-5361 [HIGH] CVE-2012-5361: ffmpeg - Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary co... Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary code via a crafted WMV file. Scope: local bookworm: resolved (fixed in 7:2.4.1-1) bullseye: resolved (fixed in 7:2.4.1-1) forky: resolved (fixed in 7:2.4.1-1) sid: resolved (fixed in 7:2.4.1-1) trixie: resolved (fixed in 7:2.4.1-1)

debian

CVE-2012-0853MEDIUMCVSS 6.8fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-0853 [MEDIUM] CVE-2012-0853: ffmpeg - The decodeTonalComponents function in the Actrac3 codec (atrac3.c) in libavcodec... The decodeTonalComponents function in the Actrac3 codec (atrac3.c) in libavcodec in FFmpeg 0.7.x before 0.7.12, and 0.8.x before 0.8.11; and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (infinite loop and crash) and possibly execute arbitrary code via a large component

debian

CVE-2012-0851MEDIUMCVSS 6.8fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-0851 [MEDIUM] CVE-2012-0851: ffmpeg - The ff_h264_decode_seq_parameter_set function in h264_ps.c in libavcodec in FFmp... The ff_h264_decode_seq_parameter_set function in h264_ps.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted H.264 file, related to the chroma_format_idc value. Sc

debian

CVE-2012-0858MEDIUMCVSS 6.8fixed in ffmpeg 7:2.2.1-1 (bookworm)2012

CVE-2012-0858 [MEDIUM] CVE-2012-0858: ffmpeg - The Shorten codec (shorten.c) in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.... The Shorten codec (shorten.c) in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Shorten file, related to an "invalid free". Scope:

debian

CVE-2012-0852MEDIUMCVSS 6.8fixed in ffmpeg 7:2.4.1-1 (bookworm)2012

CVE-2012-0852 [MEDIUM] CVE-2012-0852: ffmpeg - The adpcm_decode_frame function in adpcm.c in libavcodec in FFmpeg before 0.9.1 ... The adpcm_decode_frame function in adpcm.c in libavcodec in FFmpeg before 0.9.1 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an ADPCM file with the number of channels not equal to two. Scope: local bookwor

debian

← Previous21 / 26Next →