Vulnerabilities > Libav > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-08-23 | CVE-2020-18775 | Out-of-bounds Read vulnerability in Libav 12.3 In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_b_mb_intfi in vc1_block.c that allows an attacker to cause denial-of-service via a crafted file. | 6.5 |
| 2021-08-23 | CVE-2020-18776 | Out-of-bounds Read vulnerability in Libav 12.3 In Libav 12.3, there is a segmentation fault in vc1_decode_b_mb_intfr in vc1_block.c that allows an attacker to cause denial-of-service via a crafted file. | 6.5 |
| 2021-08-23 | CVE-2020-18778 | Out-of-bounds Read vulnerability in Libav 12.3 In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_p_mb_intfi in vc1_block.c that allows an attacker to cause denial-of-service via a crafted file. | 6.5 |
| 2019-09-19 | CVE-2019-9720 | Out-of-bounds Write vulnerability in Libav A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuses snprintf. | 6.5 |
| 2019-09-19 | CVE-2019-9717 | Resource Exhaustion vulnerability in Libav In Libav 12.3, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c has a complex format argument to sscanf. | 6.5 |
| 2019-07-30 | CVE-2019-14443 | Divide By Zero vulnerability in multiple products An issue was discovered in Libav 12.3. | 6.5 |
| 2019-07-30 | CVE-2019-14442 | Infinite Loop vulnerability in multiple products In mpc8_read_header in libavformat/mpc8.c in Libav 12.3, an input file can result in an avio_seek infinite loop and hang, with 100% CPU consumption. | 6.5 |
| 2019-07-30 | CVE-2019-14441 | Unspecified vulnerability in Libav 12.3 An issue was discovered in Libav 12.3. | 6.5 |
| 2019-07-28 | CVE-2019-14372 | Infinite Loop vulnerability in Libav 12.3 In Libav 12.3, there is an infinite loop in the function wv_read_block_header() in the file wvdec.c. | 6.5 |
| 2019-07-28 | CVE-2019-14371 | Infinite Loop vulnerability in Libav 12.3 An issue was discovered in Libav 12.3. | 6.5 |