Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

11 – 18 of 18 results


CVE-2009-4632

Low priority

Some fixes available 3 of 6

oggparsevorbis.c in FFmpeg 0.5 does not properly perform certain pointer arithmetic, which might allow remote attackers to obtain sensitive memory contents and cause a denial of service via a crafted file that triggers...

2 affected packages

ffmpeg, ffmpeg-debian

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ffmpeg
ffmpeg-debian
Show less packages

CVE-2009-0385

Medium priority

Some fixes available 4 of 24

Integer signedness error in the fourxm_read_header function in libavformat/4xm.c in FFmpeg before revision 16846 allows remote attackers to execute arbitrary code via a malformed 4X movie file with a large current_track value,...

7 affected packages

ffmpeg, ffmpeg-debian, gstreamer0.10-ffmpeg, kino, motion...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ffmpeg
ffmpeg-debian
gstreamer0.10-ffmpeg
kino
motion
mplayer
smilutils
Show all 7 packages Show less packages

CVE-2008-4868

Low priority
Ignored

Unspecified vulnerability in the avcodec_close function in libavcodec/utils.c in FFmpeg 0.4.9 before r14787, as used by MPlayer, has unknown impact and attack vectors, related to a free "on random pointers."

6 affected packages

ffmpeg, ffmpeg-debian, gstreamer0.10-ffmpeg, kino, mplayer, xmovie

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ffmpeg
ffmpeg-debian
gstreamer0.10-ffmpeg
kino
mplayer
xmovie
Show less packages

CVE-2008-4867

Low priority

Some fixes available 3 of 14

Buffer overflow in libavcodec/dca.c in FFmpeg 0.4.9 before r14917, as used by MPlayer, allows context-dependent attackers to have an unknown impact via vectors related to an incorrect DCA_MAX_FRAME_SIZE value.

6 affected packages

ffmpeg, ffmpeg-debian, gstreamer0.10-ffmpeg, kino, mplayer, xmovie

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ffmpeg
ffmpeg-debian
gstreamer0.10-ffmpeg
kino
mplayer
xmovie
Show less packages

CVE-2008-4866

Low priority

Some fixes available 1 of 12

Multiple buffer overflows in libavformat/utils.c in FFmpeg 0.4.9 before r14715, as used by MPlayer, allow context-dependent attackers to have an unknown impact via vectors related to execution of DTS generation code with a delay...

6 affected packages

ffmpeg, ffmpeg-debian, gstreamer0.10-ffmpeg, kino, mplayer, xmovie

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ffmpeg
ffmpeg-debian
gstreamer0.10-ffmpeg
kino
mplayer
xmovie
Show less packages

CVE-2008-4610

Low priority

Some fixes available 3 of 14

MPlayer allows remote attackers to cause a denial of service (application crash) via (1) a malformed AAC file, as demonstrated by lol-vlc.aac; or (2) a malformed Ogg Media (OGM) file, as demonstrated by lol-ffplay.ogm, different...

3 affected packages

ffmpeg, ffmpeg-debian, mplayer

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ffmpeg
ffmpeg-debian
mplayer
Show less packages

CVE-2008-3230

Negligible priority
Ignored

The ffmpeg lavf demuxer allows user-assisted attackers to cause a denial of service (application crash) via a crafted GIF file, possibly related to gstreamer, as demonstrated by lol-giftopnm.gif.

2 affected packages

ffmpeg, ffmpeg-debian

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ffmpeg
ffmpeg-debian
Show less packages

CVE-2008-3162

Low priority
Fixed

Stack-based buffer overflow in the str_read_packet function in libavformat/psxstr.c in FFmpeg before r13993 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted STR file...

2 affected packages

ffmpeg, ffmpeg-debian

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ffmpeg
ffmpeg-debian
Show less packages