Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ffmpeg
(Ffmpeg)| Repositories | https://github.com/FFmpeg/FFmpeg |
| #Vulnerabilities | 426 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-06-01 | CVE-2020-22041 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_buffersrc_add_frame_flags function in buffersrc. | Debian_linux, Ffmpeg | 6.5 | ||
| 2021-06-01 | CVE-2020-22044 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the url_open_dyn_buf_internal function in libavformat/aviobuf.c. | Debian_linux, Ffmpeg | 6.5 | ||
| 2021-06-02 | CVE-2020-22046 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c. | Debian_linux, Ffmpeg | 6.5 | ||
| 2021-06-02 | CVE-2020-22048 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c. | Debian_linux, Ffmpeg | 6.5 | ||
| 2021-08-10 | CVE-2020-21688 | A heap-use-after-free in the av_freep function in libavutil/mem.c of FFmpeg 4.2 allows attackers to execute arbitrary code. | Debian_linux, Ffmpeg | 8.8 | ||
| 2021-08-10 | CVE-2020-21697 | A heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service (DOS) via a crafted avi file. | Debian_linux, Ffmpeg | 6.5 | ||
| 2021-11-10 | CVE-2020-23906 | FFmpeg N-98388-g76a3ee996b allows attackers to cause a denial of service (DoS) via a crafted audio file due to insufficient verification of data authenticity. | Ffmpeg | 5.5 | ||
| 2021-01-04 | CVE-2020-35965 | decode_frame in libavcodec/exr.c in FFmpeg 4.3.1 has an out-of-bounds write because of errors in calculations of when to perform memset zero operations. | Debian_linux, Ffmpeg | 7.5 | ||
| 2021-05-26 | CVE-2020-22015 | Buffer Overflow vulnerability in FFmpeg 4.2 in mov_write_video_tag due to the out of bounds in libavformat/movenc.c, which could let a remote malicious user obtain sensitive information, cause a Denial of Service, or execute arbitrary code. | Debian_linux, Ffmpeg | 8.8 | ||
| 2021-05-26 | CVE-2020-22019 | Buffer Overflow vulnerability in FFmpeg 4.2 at convolution_y_10bit in libavfilter/vf_vmafmotion.c, which could let a remote malicious user cause a Denial of Service. | Debian_linux, Ffmpeg | 6.5 |