VulnerableCode Package Details - pkg:deb/ubuntu/ffmpeg@7:4.2.4-1ubuntu0.1

Search for packages

Package details: pkg:deb/ubuntu/ffmpeg@7:4.2.4-1ubuntu0.1

Essentials
History (0)

purl	pkg:deb/ubuntu/ffmpeg@7:4.2.4-1ubuntu0.1

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (3)

Vulnerability	Summary	Aliases
VCID-4kfh-pqwk-aaam	cbs_jpeg_split_fragment in libavcodec/cbs_jpeg.c in FFmpeg 4.1 and 4.2.2 has a heap-based buffer overflow during JPEG_MARKER_SOS handling because of a missing length check.	CVE-2020-12284
VCID-j9je-s5ab-aaah	block_cmp() in libavcodec/zmbvenc.c in FFmpeg 4.1.3 has a heap-based buffer over-read.	CVE-2019-13312
VCID-pdga-yrz9-aaar	FFmpeg 2.8 and 4.2.3 has a use-after-free via a crafted EXTINF duration in an m3u8 file because parse_playlist in libavformat/hls.c frees a pointer, and later that pointer is accessed in av_probe_input_format3 in libavformat/format.c.	CVE-2020-13904

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version