VulnerableCode Package Details - pkg:alpm/archlinux/ffmpeg@2:4.4.1-1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-28gq-jw3t-aaan	libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868.	CVE-2021-38114
VCID-2nay-1anf-aaaa	Buffer Overflow vulnerability in FFmpeg 4.2 in mov_write_video_tag due to the out of bounds in libavformat/movenc.c, which could let a remote malicious user obtain sensitive information, cause a Denial of Service, or execute arbitrary code.	CVE-2020-22015
VCID-5pn5-avq6-aaar	Buffer Overflow vulnerability in FFmpeg 4.2 at convolution_y_10bit in libavfilter/vf_vmafmotion.c, which could let a remote malicious user cause a Denial of Service.	CVE-2020-22019
VCID-616x-4sp2-aaas	A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in avcodec_alloc_context3 at options.c.	CVE-2020-22037
VCID-a7u5-cez7-aaaa	FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aacpsy.c, which allows a remote malicious user to cause a Denial of Service.	CVE-2020-20446
VCID-aw8f-dqqy-aaam	FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aaccoder, which allows a remote malicious user to cause a Denial of Service	CVE-2020-20453
VCID-gz3k-fdjj-aaam	FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/lpc.h, which allows a remote malicious user to cause a Denial of Service.	CVE-2020-20445
VCID-h52h-xpw7-aaaf	adts_decode_extradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the init_get_bits return value, which is a necessary step because the second argument to init_get_bits can be crafted.	CVE-2021-38171
VCID-jb7k-z2az-aaac	Buffer Overflow vulnerability in FFmpeg 4.2 at filter_edges function in libavfilter/vf_yadif.c, which could let a remote malicious user cause a Denial of Service.	CVE-2020-22021
VCID-npy1-ax2t-aaac	FFmpeg version (git commit de8e6e67e7523e48bb27ac224a0b446df05e1640) suffers from a an assertion failure at src/libavutil/mathematics.c.	CVE-2021-38291
VCID-qydw-w4kk-aaap	A heap-based Buffer Overflow Vulnerability exists FFmpeg 4.2 at libavfilter/vf_vmafmotion.c in convolution_y_8bit, which could let a remote malicious user cause a Denial of Service.	CVE-2020-22033
VCID-t9xj-4mu8-aaap	dwa_uncompress in libavcodec/exr.c in FFmpeg 4.4 allows an out-of-bounds array access because dc_count is not strictly checked.	CVE-2021-33815

Vulnerability

Summary

Aliases

VCID-28gq-jw3t-aaan

libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868.

CVE-2021-38114

VCID-2nay-1anf-aaaa

Buffer Overflow vulnerability in FFmpeg 4.2 in mov_write_video_tag due to the out of bounds in libavformat/movenc.c, which could let a remote malicious user obtain sensitive information, cause a Denial of Service, or execute arbitrary code.

CVE-2020-22015

VCID-5pn5-avq6-aaar

Buffer Overflow vulnerability in FFmpeg 4.2 at convolution_y_10bit in libavfilter/vf_vmafmotion.c, which could let a remote malicious user cause a Denial of Service.

CVE-2020-22019

VCID-616x-4sp2-aaas

A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in avcodec_alloc_context3 at options.c.

CVE-2020-22037

VCID-a7u5-cez7-aaaa

FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aacpsy.c, which allows a remote malicious user to cause a Denial of Service.

CVE-2020-20446

VCID-aw8f-dqqy-aaam

FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aaccoder, which allows a remote malicious user to cause a Denial of Service

CVE-2020-20453

VCID-gz3k-fdjj-aaam

FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/lpc.h, which allows a remote malicious user to cause a Denial of Service.

CVE-2020-20445

VCID-h52h-xpw7-aaaf

adts_decode_extradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the init_get_bits return value, which is a necessary step because the second argument to init_get_bits can be crafted.

CVE-2021-38171

VCID-jb7k-z2az-aaac

Buffer Overflow vulnerability in FFmpeg 4.2 at filter_edges function in libavfilter/vf_yadif.c, which could let a remote malicious user cause a Denial of Service.

CVE-2020-22021

VCID-npy1-ax2t-aaac

FFmpeg version (git commit de8e6e67e7523e48bb27ac224a0b446df05e1640) suffers from a an assertion failure at src/libavutil/mathematics.c.

CVE-2021-38291

VCID-qydw-w4kk-aaap

A heap-based Buffer Overflow Vulnerability exists FFmpeg 4.2 at libavfilter/vf_vmafmotion.c in convolution_y_8bit, which could let a remote malicious user cause a Denial of Service.

CVE-2020-22033

VCID-t9xj-4mu8-aaap

dwa_uncompress in libavcodec/exr.c in FFmpeg 4.4 allows an out-of-bounds array access because dc_count is not strictly checked.

CVE-2021-33815

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:26.267266+00:00	Arch Linux Importer	Fixing	VCID-gz3k-fdjj-aaam	https://security.archlinux.org/AVG-1989	36.0.0
2025-03-28T07:46:26.248671+00:00	Arch Linux Importer	Fixing	VCID-a7u5-cez7-aaaa	https://security.archlinux.org/AVG-1989	36.0.0
2025-03-28T07:46:26.230061+00:00	Arch Linux Importer	Fixing	VCID-aw8f-dqqy-aaam	https://security.archlinux.org/AVG-1989	36.0.0
2025-03-28T07:46:26.211345+00:00	Arch Linux Importer	Fixing	VCID-2nay-1anf-aaaa	https://security.archlinux.org/AVG-1989	36.0.0
2025-03-28T07:46:26.192655+00:00	Arch Linux Importer	Fixing	VCID-5pn5-avq6-aaar	https://security.archlinux.org/AVG-1989	36.0.0
2025-03-28T07:46:26.174077+00:00	Arch Linux Importer	Fixing	VCID-jb7k-z2az-aaac	https://security.archlinux.org/AVG-1989	36.0.0
2025-03-28T07:46:26.155183+00:00	Arch Linux Importer	Fixing	VCID-qydw-w4kk-aaap	https://security.archlinux.org/AVG-1989	36.0.0
2025-03-28T07:46:26.136399+00:00	Arch Linux Importer	Fixing	VCID-616x-4sp2-aaas	https://security.archlinux.org/AVG-1989	36.0.0
2025-03-28T07:46:26.117814+00:00	Arch Linux Importer	Fixing	VCID-t9xj-4mu8-aaap	https://security.archlinux.org/AVG-1989	36.0.0
2025-03-28T07:46:26.099007+00:00	Arch Linux Importer	Fixing	VCID-28gq-jw3t-aaan	https://security.archlinux.org/AVG-1989	36.0.0
2025-03-28T07:46:26.080241+00:00	Arch Linux Importer	Fixing	VCID-h52h-xpw7-aaaf	https://security.archlinux.org/AVG-1989	36.0.0
2025-03-28T07:46:26.061543+00:00	Arch Linux Importer	Fixing	VCID-npy1-ax2t-aaac	https://security.archlinux.org/AVG-1989	36.0.0
2024-09-18T02:01:41.997023+00:00	Arch Linux Importer	Fixing	VCID-gz3k-fdjj-aaam	https://security.archlinux.org/AVG-1989	34.0.1
2024-09-18T02:01:41.976947+00:00	Arch Linux Importer	Fixing	VCID-a7u5-cez7-aaaa	https://security.archlinux.org/AVG-1989	34.0.1
2024-09-18T02:01:41.956972+00:00	Arch Linux Importer	Fixing	VCID-aw8f-dqqy-aaam	https://security.archlinux.org/AVG-1989	34.0.1
2024-09-18T02:01:41.937598+00:00	Arch Linux Importer	Fixing	VCID-2nay-1anf-aaaa	https://security.archlinux.org/AVG-1989	34.0.1
2024-09-18T02:01:41.918581+00:00	Arch Linux Importer	Fixing	VCID-5pn5-avq6-aaar	https://security.archlinux.org/AVG-1989	34.0.1
2024-09-18T02:01:41.896553+00:00	Arch Linux Importer	Fixing	VCID-jb7k-z2az-aaac	https://security.archlinux.org/AVG-1989	34.0.1
2024-09-18T02:01:41.872251+00:00	Arch Linux Importer	Fixing	VCID-qydw-w4kk-aaap	https://security.archlinux.org/AVG-1989	34.0.1
2024-09-18T02:01:41.847021+00:00	Arch Linux Importer	Fixing	VCID-616x-4sp2-aaas	https://security.archlinux.org/AVG-1989	34.0.1
2024-09-18T02:01:41.819246+00:00	Arch Linux Importer	Fixing	VCID-t9xj-4mu8-aaap	https://security.archlinux.org/AVG-1989	34.0.1
2024-09-18T02:01:41.790433+00:00	Arch Linux Importer	Fixing	VCID-28gq-jw3t-aaan	https://security.archlinux.org/AVG-1989	34.0.1
2024-09-18T02:01:41.762741+00:00	Arch Linux Importer	Fixing	VCID-h52h-xpw7-aaaf	https://security.archlinux.org/AVG-1989	34.0.1
2024-09-18T02:01:41.739487+00:00	Arch Linux Importer	Fixing	VCID-npy1-ax2t-aaac	https://security.archlinux.org/AVG-1989	34.0.1
2024-01-03T22:27:48.237580+00:00	Arch Linux Importer	Fixing	VCID-gz3k-fdjj-aaam	https://security.archlinux.org/AVG-1989	34.0.0rc1
2024-01-03T22:27:48.214056+00:00	Arch Linux Importer	Fixing	VCID-a7u5-cez7-aaaa	https://security.archlinux.org/AVG-1989	34.0.0rc1
2024-01-03T22:27:48.193187+00:00	Arch Linux Importer	Fixing	VCID-aw8f-dqqy-aaam	https://security.archlinux.org/AVG-1989	34.0.0rc1
2024-01-03T22:27:48.169656+00:00	Arch Linux Importer	Fixing	VCID-2nay-1anf-aaaa	https://security.archlinux.org/AVG-1989	34.0.0rc1
2024-01-03T22:27:48.148751+00:00	Arch Linux Importer	Fixing	VCID-5pn5-avq6-aaar	https://security.archlinux.org/AVG-1989	34.0.0rc1
2024-01-03T22:27:48.125243+00:00	Arch Linux Importer	Fixing	VCID-jb7k-z2az-aaac	https://security.archlinux.org/AVG-1989	34.0.0rc1
2024-01-03T22:27:48.104559+00:00	Arch Linux Importer	Fixing	VCID-qydw-w4kk-aaap	https://security.archlinux.org/AVG-1989	34.0.0rc1
2024-01-03T22:27:48.081110+00:00	Arch Linux Importer	Fixing	VCID-616x-4sp2-aaas	https://security.archlinux.org/AVG-1989	34.0.0rc1
2024-01-03T22:27:48.060378+00:00	Arch Linux Importer	Fixing	VCID-t9xj-4mu8-aaap	https://security.archlinux.org/AVG-1989	34.0.0rc1
2024-01-03T22:27:48.036578+00:00	Arch Linux Importer	Fixing	VCID-28gq-jw3t-aaan	https://security.archlinux.org/AVG-1989	34.0.0rc1
2024-01-03T22:27:48.015959+00:00	Arch Linux Importer	Fixing	VCID-h52h-xpw7-aaaf	https://security.archlinux.org/AVG-1989	34.0.0rc1
2024-01-03T22:27:47.995414+00:00	Arch Linux Importer	Fixing	VCID-npy1-ax2t-aaac	https://security.archlinux.org/AVG-1989	34.0.0rc1

2025-03-28T07:46:26.267266+00:00

Arch Linux Importer

Fixing