|
246851
|
7.8 |
HIGH
Local
|
ffmpeg
|
ffmpeg
|
libavcodec/scpr.c in FFmpeg 3.3 before 3.3.1 does not properly validate height and width data, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9995
|
2024-11-21 12:37 |
2017-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246852
|
7.8 |
HIGH
Local
|
ffmpeg
debian
|
ffmpeg
debian_linux
|
libavcodec/webp.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 does not ensure that pix_fmt is set, which allows remote attackers to cau…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9994
|
2024-11-21 12:37 |
2017-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246853
|
7.5 |
HIGH
Network
|
ffmpeg
debian
|
ffmpeg
debian_linux
|
FFmpeg before 2.8.12, 3.0.x and 3.1.x before 3.1.9, 3.2.x before 3.2.6, and 3.3.x before 3.3.2 does not properly restrict HTTP Live Streaming filename extensions and demuxer names, which allows attac…
|
CWE-200
Information Exposure
|
CVE-2017-9993
|
2024-11-21 12:37 |
2017-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246854
|
8.8 |
HIGH
Network
|
ffmpeg
debian
|
ffmpeg
debian_linux
|
Heap-based buffer overflow in the decode_dds1 function in libavcodec/dfa.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 allows remote at…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9992
|
2024-11-21 12:37 |
2017-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246855
|
7.8 |
HIGH
Local
|
ffmpeg
|
ffmpeg
|
Heap-based buffer overflow in the xwd_decode_frame function in libavcodec/xwddec.c in FFmpeg before 2.8.12, 3.0.x before 3.0.8, 3.1.x before 3.1.8, 3.2.x before 3.2.5, and 3.3.x before 3.3.1 allows r…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9991
|
2024-11-21 12:37 |
2017-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246856
|
8.8 |
HIGH
Network
|
ffmpeg
|
ffmpeg
|
Stack-based buffer overflow in the color_string_to_rgba function in libavcodec/xpmdec.c in FFmpeg 3.3 before 3.3.1 allows remote attackers to cause a denial of service (application crash) or possibly…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9990
|
2024-11-21 12:37 |
2017-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246857
|
6.5 |
MEDIUM
Network
|
libming
debian
|
libming
debian_linux
|
util/outputtxt.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote denial of service (NULL pointer dereference) attack.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-9989
|
2024-11-21 12:37 |
2017-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246858
|
6.5 |
MEDIUM
Network
|
libming
debian
|
libming
debian_linux
|
The readEncUInt30 function in util/read.c in libming 0.4.8 mishandles memory allocation. A crafted input will lead to a remote denial of service (NULL pointer dereference) attack against parser.c.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-9988
|
2024-11-21 12:37 |
2017-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246859
|
7.5 |
HIGH
Network
|
libav
|
libav
|
There is a heap-based buffer overflow in the function hpel_motion in mpegvideo_motion.c in libav 12.1. A crafted input can lead to a remote denial of service attack.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9987
|
2024-11-21 12:37 |
2017-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246860
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The intr function in sound/oss/msnd_pinnacle.c in the Linux kernel through 4.11.7 allows local users to cause a denial of service (over-boundary access) or possibly have unspecified other impact by c…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9986
|
2024-11-21 12:37 |
2017-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
