Search for packages
| purl | pkg:deb/debian/ffmpeg@7:2.4.1-1?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1228-m28x-bkbm | Multiple vulnerabilities have been found in MPlayer and the bundled FFmpeg, the worst of which may lead to the execution of arbitrary code. |
CVE-2008-4610
|
| VCID-2bcj-d5ej-r3hr | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3929
|
| VCID-2r8m-jabw-pqcs | ffmpeg: av_lzo1x_decode() integer overflow |
CVE-2014-4610
|
| VCID-2w9w-wdmc-2kba | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2788
|
| VCID-36nu-w1cf-nyfv | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2779
|
| VCID-3nks-wkaa-87ab | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2783
|
| VCID-3w4h-ej87-2bak | Multiple vulnerabilities have been found in Libav, allowing attackers to execute arbitrary code or cause Denial of Service. |
CVE-2012-0853
|
| VCID-46j1-56b7-h7e5 | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-4351
|
| VCID-4e7p-eq3e-2ydq | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3952
|
| VCID-4gty-uet7-9qh1 | several |
CVE-2013-0854
|
| VCID-5ecw-gxq8-afeu | Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition. |
CVE-2013-7009
|
| VCID-6h3b-1zee-bkbu | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3893
|
| VCID-6ve2-44rx-a7f3 | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2777
|
| VCID-763d-t7yg-z3a6 | The msrle_decode_8_16_24_32 function in msrledec.c in libavcodec in FFmpeg through 1.1.3 does not properly determine certain end pointers, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via crafted Microsoft RLE data. |
CVE-2013-2496
|
| VCID-76n3-ajwb-jye4 | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2780
|
| VCID-7fth-gbd9-pbgq | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-0947
|
| VCID-7gm5-dzcy-7ue1 | Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary code via a crafted WMV file. |
CVE-2012-5361
|
| VCID-7udv-1hxe-uqgv | Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition. |
CVE-2013-0867
|
| VCID-836z-kedn-4qbp | The render_line function in the vorbis codec (vorbis.c) in libavcodec in FFmpeg before 0.9.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Vorbis file, related to a large multiplier. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3893. |
CVE-2012-0859
|
| VCID-8e6g-myzr-f3cs | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3940
|
| VCID-8w5z-ed96-tyh5 | several |
CVE-2013-0850
|
| VCID-8yeg-3zzb-bbax | Multiple vulnerabilities have been found in Libav, allowing attackers to execute arbitrary code or cause Denial of Service. |
CVE-2012-0852
|
| VCID-915s-xb5w-v7d3 | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3936
|
| VCID-9h1t-cteg-4bdr | Multiple vulnerabilities have been found in Libav, allowing attackers to execute arbitrary code or cause Denial of Service. |
CVE-2013-0860
|
| VCID-9mc9-25cy-5kdk | Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition. |
CVE-2014-5272
|
| VCID-ac79-f3hy-qkbq | The VC-1 decoding functionality in FFmpeg before 0.5.4, as used in MPlayer and other products, does not properly restrict read operations, which allows remote attackers to have an unspecified impact via a crafted VC-1 file, a related issue to CVE-2011-0723. |
CVE-2011-2160
|
| VCID-b32a-qp1q-hfhv | Multiple buffer overflows in vorbis_dec.c in the Vorbis decoder in FFmpeg, as used in Google Chrome before 8.0.552.237 and Chrome OS before 8.0.552.344, allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact via a crafted WebM file, related to buffers for (1) the channel floor and (2) the channel residue. |
CVE-2011-0480
|
| VCID-b3z7-f6ef-8uev | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2778
|
| VCID-c9as-jnrv-1uca | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2010-4704
|
| VCID-cba6-ptd9-37bj | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3944
|
| VCID-e2as-em33-afb9 | security update |
CVE-2012-6618
|
| VCID-fqxy-s1w8-nkds | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-4364
|
| VCID-h3q7-zqpz-kbgn | Multiple vulnerabilities have been found in libav, the worst of which may allow execution of arbitrary code. |
CVE-2016-3062
|
| VCID-hjsy-nr8t-u7fr | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2784
|
| VCID-htpg-54z4-kqce | several |
CVE-2013-7015
|
| VCID-hynf-a613-ckg7 | FFmpeg 0.5.x, as used in MPlayer and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a malformed VC-1 file. |
CVE-2011-0723
|
| VCID-hzzb-1gcc-wkhn | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3974
|
| VCID-j2uh-c55d-kfb7 | The ff_h264_decode_seq_parameter_set function in h264_ps.c in libavcodec in FFmpeg before 1.1.3 does not validate the relationship between luma depth and chroma depth, which allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via crafted H.264 data. |
CVE-2013-2277
|
| VCID-j4y8-r6rr-aqeb | The ape_read_header function in ape.c in libavformat in FFmpeg before 0.5.4, as used in MPlayer, VideoLAN VLC media player, and other products, allows remote attackers to cause a denial of service (application crash) via an APE (aka Monkey's Audio) file that contains a header but no frames. |
CVE-2011-2161
|
| VCID-jb5a-yed1-cuc7 | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2771
|
| VCID-k2w1-zaf6-bbfb | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2772
|
| VCID-kybt-qj87-zkfw | The svq1_decode_frame function in the SVQ1 decoder (svq1dec.c) in libavcodec in FFmpeg 0.5.x before 0.5.7, 0.6.x before 0.6.4, 0.7.x before 0.7.9, and 0.8.x before 0.8.8; and in Libav 0.5.x before 0.5.6, 0.6.x before 0.6.4, and 0.7.x before 0.7.3 allows remote attackers to cause a denial of service (memory corruption) via a crafted SVQ1 stream, related to "dimensions changed." |
CVE-2011-4579
|
| VCID-kzw2-53c2-r7fe | Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition. |
CVE-2013-0873
|
| VCID-mjdt-dmjx-rbas | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2009-4639
|
| VCID-n8eq-zjwh-6qhb | several |
CVE-2013-7010
|
| VCID-nuzx-58sb-pkfz | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3362
|
| VCID-pdez-6yzf-rqaa | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-4353
|
| VCID-qjr2-mtbt-fbh7 | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2805
|
| VCID-qk64-d9qt-syea | The lpc_prediction function in libavcodec/alac.c in FFmpeg before 1.1 allows remote attackers to have an unspecified impact via crafted Apple Lossless Audio Codec (ALAC) data, related to a large nb_samples value. |
CVE-2013-0856
|
| VCID-qkwe-mvp8-dyhb | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2803
|
| VCID-qm31-4jjc-wqcp | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2776
|
| VCID-qvqs-e1hv-dqgz | several |
CVE-2013-0849
|
| VCID-r1a7-gy73-tqaz | The Matroska format decoder in FFmpeg before 0.8.3 does not properly allocate memory, which allows remote attackers to execute arbitrary code via a crafted file. |
CVE-2011-3504
|
| VCID-r3a8-buwe-8uep | security update |
CVE-2013-7020
|
| VCID-rk7u-49nq-nucf | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3947
|
| VCID-rp3h-1w1e-guhf | Multiple unspecified vulnerabilities in FFmpeg 0.4.x through 0.6.x, as used in MPlayer 1.0 and other products, in Mandriva Linux 2009.0, 2010.0, and 2010.1; Corporate Server 4.0 (aka CS4.0); and Mandriva Enterprise Server 5 (aka MES5) have unknown impact and attack vectors, related to issues "originally discovered by Google Chrome developers." |
CVE-2011-2162
|
| VCID-s6un-h6n8-wbha | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3946
|
| VCID-sqmy-qruf-v3bc | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2797
|
| VCID-su7a-a1v1-r7hp | Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. |
CVE-2013-0894
|
| VCID-t2ac-vqpz-vfem | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2013-3672
|
| VCID-t5mw-tdwm-xugw | Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. |
CVE-2012-5150
|
| VCID-te22-6sy1-abds | Multiple vulnerabilities have been found in Libav, allowing attackers to execute arbitrary code or cause Denial of Service. |
CVE-2013-0848
|
| VCID-te7d-jfk4-tyg6 | several |
CVE-2013-0858
|
| VCID-tf92-az5w-qkg6 | Multiple vulnerabilities have been found in Libav, allowing attackers to execute arbitrary code or cause Denial of Service. |
CVE-2013-0868
|
| VCID-tq6b-6p47-93d5 | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2804
|
| VCID-u29q-aauu-1ubg | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3951
|
| VCID-uet3-fnhy-eybr | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2013-3670
|
| VCID-ufg8-5jjv-ryb2 | Multiple vulnerabilities have been found in FFmpeg, the worst of which could lead to arbitrary code execution or Denial of Service condition. |
CVE-2013-7011
|
| VCID-ujgq-e44n-8fhp | Multiple vulnerabilities have been found in Libav, allowing attackers to execute arbitrary code or cause Denial of Service. |
CVE-2012-0851
|
| VCID-uq63-1f7v-xbc3 | security update |
CVE-2014-2263
|
| VCID-uqjr-dxqx-2ka6 | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3895
|
| VCID-v3b6-vny7-wubx | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2781
|
| VCID-vam6-cseq-7uag | Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary code via a crafted QT file. |
CVE-2012-5360
|
| VCID-vq2m-rgkr-efcf | several |
CVE-2013-0844
|
| VCID-vzb3-czne-nya8 | several |
CVE-2013-0865
|
| VCID-vzz4-bdcx-mqhm | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3941
|
| VCID-wa31-6v3y-qygt | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2010-3908
|
| VCID-weuz-9gje-xyea | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3973
|
| VCID-wvzg-agjg-a7f1 | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2775
|
| VCID-wxyc-g5yx-rqcv | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2773
|
| VCID-xba6-4hat-7yaz | Libavcodec in FFmpeg before 0.11 allows remote attackers to execute arbitrary code via a crafted ASF file. |
CVE-2012-5359
|
| VCID-xy54-2jvp-63c1 | Multiple vulnerabilities have been reported in Chromium and V8, some of which may allow execution of arbitrary code. |
CVE-2011-3892
|
| VCID-zd31-hza6-6ka5 | FFmpeg before 0.5.4, as used in MPlayer and other products, allows remote attackers to cause a denial of service (heap memory corruption and application crash) or possibly execute arbitrary code via a malformed RealMedia file. |
CVE-2011-0722
|
| VCID-zfz3-8m91-r3hr | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2012-2801
|
| VCID-zjrs-4mu3-8ucd | The iff_read_header function in iff.c in libavformat in FFmpeg through 1.1.3 does not properly handle data sizes for Interchange File Format (IFF) data during operations involving a CMAP chunk or a video codec, which allows remote attackers to cause a denial of service (integer overflow, out-of-bounds array access, and application crash) or possibly have unspecified other impact via a crafted header. |
CVE-2013-2495
|
| VCID-zpk3-uqa9-fyeu | The field_end function in libavcodec/h264.c in FFmpeg before 1.1.2 allows remote attackers to have an unspecified impact via crafted H.264 data, related to an SPS and slice mismatch and an out-of-bounds array access. |
CVE-2013-0869
|
| VCID-zrjt-up2x-tuej | several |
CVE-2013-0846
|
| VCID-zrxf-ckzt-wyf5 | Multiple vulnerabilities were found in FFmpeg, the worst of which might enable remote attackers to cause user-assisted execution of arbitrary code. |
CVE-2011-3934
|