VulnerableCode Package Details - pkg:apk/alpine/ffmpeg@2.8.11-r0?arch=x86&distroversion=v3.3&reponame=main

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-51s3-7aca-uudb	Heap-based buffer overflow in libavformat/rtmppkt.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote attackers to execute arbitrary code by leveraging failure to check for RTMP packet size mismatches.	CVE-2016-10191
VCID-7ftk-cmhs-6kha	Integer overflow in the mov_build_index function in libavformat/mov.c in FFmpeg before 2.8.8, 3.0.x before 3.0.3 and 3.1.x before 3.1.1 allows remote attackers to have unspecified impact via vectors involving sample size.	CVE-2016-6164
VCID-ehgf-99d2-uyeh	Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition.	CVE-2016-7502
VCID-fpby-s5k4-ybg1	Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition.	CVE-2016-2328
VCID-fy4j-u18p-83f5	Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition.	CVE-2016-7905
VCID-gqfr-j8ju-73fh	Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition.	CVE-2016-7562
VCID-j1gj-mw7k-2ub9	Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition.	CVE-2016-2213
VCID-jktw-kqvr-r7h8	Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition.	CVE-2016-2329
VCID-jrpc-5n1u-dygq	Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition.	CVE-2016-7450
VCID-mfbv-npxq-fbb7	Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition.	CVE-2016-7122
VCID-tsrj-t3se-2fbw	Heap-based buffer overflow in libavformat/http.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote web servers to execute arbitrary code via a negative chunk size in an HTTP response.	CVE-2016-10190
VCID-ud3h-b3k7-dkd3	Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition.	CVE-2016-7785
VCID-ujdm-ubfw-57bs	The zlib_refill function in libavformat/swfdec.c in FFmpeg before 3.1.3 allows remote attackers to cause an infinite loop denial of service via a crafted SWF file.	CVE-2016-6881
VCID-vka8-kexr-g7ej	Heap-based buffer overflow in ffserver.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote attackers to execute arbitrary code by leveraging failure to check chunk size.	CVE-2016-10192
VCID-wpwh-kftw-vyhp	Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code.	CVE-2017-5024
VCID-x9xw-3vku-3bbx	Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition.	CVE-2016-2330
VCID-ysu4-93vf-q7gp	Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code.	CVE-2017-5025

Vulnerability

Summary

Aliases

VCID-51s3-7aca-uudb

Heap-based buffer overflow in libavformat/rtmppkt.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote attackers to execute arbitrary code by leveraging failure to check for RTMP packet size mismatches.

CVE-2016-10191

VCID-7ftk-cmhs-6kha

Integer overflow in the mov_build_index function in libavformat/mov.c in FFmpeg before 2.8.8, 3.0.x before 3.0.3 and 3.1.x before 3.1.1 allows remote attackers to have unspecified impact via vectors involving sample size.

CVE-2016-6164

VCID-ehgf-99d2-uyeh

Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition.

CVE-2016-7502

VCID-fpby-s5k4-ybg1

Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition.

CVE-2016-2328

VCID-fy4j-u18p-83f5

Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition.

CVE-2016-7905

VCID-gqfr-j8ju-73fh

Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition.

CVE-2016-7562

VCID-j1gj-mw7k-2ub9

Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition.

CVE-2016-2213

VCID-jktw-kqvr-r7h8

Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition.

CVE-2016-2329

VCID-jrpc-5n1u-dygq

Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition.

CVE-2016-7450

VCID-mfbv-npxq-fbb7

Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition.

CVE-2016-7122

VCID-tsrj-t3se-2fbw

Heap-based buffer overflow in libavformat/http.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote web servers to execute arbitrary code via a negative chunk size in an HTTP response.

CVE-2016-10190

VCID-ud3h-b3k7-dkd3

Multiple vulnerabilities have been found in FFmpeg, the worst of which may allow remote attackers to cause a Denial of Service condition.

CVE-2016-7785

VCID-ujdm-ubfw-57bs

The zlib_refill function in libavformat/swfdec.c in FFmpeg before 3.1.3 allows remote attackers to cause an infinite loop denial of service via a crafted SWF file.

CVE-2016-6881

VCID-vka8-kexr-g7ej

Heap-based buffer overflow in ffserver.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote attackers to execute arbitrary code by leveraging failure to check chunk size.

CVE-2016-10192

VCID-wpwh-kftw-vyhp

Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code.

CVE-2017-5024

VCID-x9xw-3vku-3bbx

Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition.

CVE-2016-2330

VCID-ysu4-93vf-q7gp

Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code.

CVE-2017-5025

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-08T06:25:08.259530+00:00	Alpine Linux Importer	Fixing	VCID-jktw-kqvr-r7h8	https://secdb.alpinelinux.org/v3.3/main.json	38.1.0
2026-04-08T06:24:46.948465+00:00	Alpine Linux Importer	Fixing	VCID-vka8-kexr-g7ej	https://secdb.alpinelinux.org/v3.3/main.json	38.1.0
2026-04-03T17:53:36.117229+00:00	Alpine Linux Importer	Fixing	VCID-mfbv-npxq-fbb7	https://secdb.alpinelinux.org/v3.3/main.json	38.1.0
2026-04-03T17:52:08.335698+00:00	Alpine Linux Importer	Fixing	VCID-ud3h-b3k7-dkd3	https://secdb.alpinelinux.org/v3.3/main.json	38.1.0
2026-04-03T17:51:35.810247+00:00	Alpine Linux Importer	Fixing	VCID-wpwh-kftw-vyhp	https://secdb.alpinelinux.org/v3.3/main.json	38.1.0
2026-04-03T17:49:20.832892+00:00	Alpine Linux Importer	Fixing	VCID-j1gj-mw7k-2ub9	https://secdb.alpinelinux.org/v3.3/main.json	38.1.0
2026-04-03T17:46:52.719993+00:00	Alpine Linux Importer	Fixing	VCID-fy4j-u18p-83f5	https://secdb.alpinelinux.org/v3.3/main.json	38.1.0
2026-04-01T19:33:50.398153+00:00	Alpine Linux Importer	Fixing	VCID-x9xw-3vku-3bbx	https://secdb.alpinelinux.org/v3.3/main.json	38.0.0
2026-04-01T19:32:39.403934+00:00	Alpine Linux Importer	Fixing	VCID-gqfr-j8ju-73fh	https://secdb.alpinelinux.org/v3.3/main.json	38.0.0
2026-04-01T19:29:06.873493+00:00	Alpine Linux Importer	Fixing	VCID-jrpc-5n1u-dygq	https://secdb.alpinelinux.org/v3.3/main.json	38.0.0
2026-04-01T19:22:08.374591+00:00	Alpine Linux Importer	Fixing	VCID-ehgf-99d2-uyeh	https://secdb.alpinelinux.org/v3.3/main.json	38.0.0
2026-04-01T19:21:13.359417+00:00	Alpine Linux Importer	Fixing	VCID-51s3-7aca-uudb	https://secdb.alpinelinux.org/v3.3/main.json	38.0.0
2026-04-01T19:15:20.804771+00:00	Alpine Linux Importer	Fixing	VCID-7ftk-cmhs-6kha	https://secdb.alpinelinux.org/v3.3/main.json	38.0.0
2026-04-01T19:10:01.410484+00:00	Alpine Linux Importer	Fixing	VCID-ujdm-ubfw-57bs	https://secdb.alpinelinux.org/v3.3/main.json	38.0.0
2026-04-01T19:02:45.694727+00:00	Alpine Linux Importer	Fixing	VCID-ysu4-93vf-q7gp	https://secdb.alpinelinux.org/v3.3/main.json	38.0.0
2026-04-01T18:59:39.153401+00:00	Alpine Linux Importer	Fixing	VCID-fpby-s5k4-ybg1	https://secdb.alpinelinux.org/v3.3/main.json	38.0.0
2026-04-01T18:47:34.787052+00:00	Alpine Linux Importer	Fixing	VCID-tsrj-t3se-2fbw	https://secdb.alpinelinux.org/v3.3/main.json	38.0.0