Vulnerabilities > Ffmpeg > Ffmpeg > 0.5.9
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2013-12-09 | CVE-2013-7024 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ffmpeg The jpeg2000_decode_tile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.1 does not consider the component number in certain calculations, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted JPEG2000 data. | 6.8 |
| 2013-12-09 | CVE-2013-7023 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ffmpeg The ff_combine_frame function in libavcodec/parser.c in FFmpeg before 2.1 does not properly handle certain memory-allocation errors, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted data. | 6.8 |
| 2013-12-09 | CVE-2013-7022 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ffmpeg The g2m_init_buffers function in libavcodec/g2meet.c in FFmpeg before 2.1 does not properly allocate memory for tiles, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted Go2Webinar data. | 6.8 |
| 2013-12-09 | CVE-2013-7021 | Resource Management Errors vulnerability in Ffmpeg The filter_frame function in libavfilter/vf_fps.c in FFmpeg before 2.1 does not properly ensure the availability of FIFO content, which allows remote attackers to cause a denial of service (double free) or possibly have unspecified other impact via crafted data. | 6.8 |
| 2013-12-09 | CVE-2013-7020 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products The read_header function in libavcodec/ffv1dec.c in FFmpeg before 2.1 does not properly enforce certain bit-count and colorspace constraints, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted FFV1 data. | 6.8 |
| 2013-12-09 | CVE-2013-7019 | Improper Input Validation vulnerability in Ffmpeg The get_cox function in libavcodec/jpeg2000dec.c in FFmpeg before 2.1 does not properly validate the reduction factor, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted JPEG2000 data. | 6.8 |
| 2013-12-09 | CVE-2013-7018 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ffmpeg libavcodec/jpeg2000dec.c in FFmpeg before 2.1 does not ensure the use of valid code-block dimension values, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted JPEG2000 data. | 6.8 |
| 2013-12-09 | CVE-2013-7017 | Unspecified vulnerability in Ffmpeg libavcodec/jpeg2000.c in FFmpeg before 2.1 allows remote attackers to cause a denial of service (invalid pointer dereference) or possibly have unspecified other impact via crafted JPEG2000 data. network ffmpeg | 6.8 |
| 2013-12-09 | CVE-2013-7016 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Ffmpeg The get_siz function in libavcodec/jpeg2000dec.c in FFmpeg before 2.1 does not ensure the expected sample separation, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted JPEG2000 data. | 6.8 |
| 2013-12-09 | CVE-2013-7015 | Improper Input Validation vulnerability in Ffmpeg The flashsv_decode_frame function in libavcodec/flashsv.c in FFmpeg before 2.1 does not properly validate a certain height value, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact via crafted Flash Screen Video data. | 6.8 |