FFmpeg

ffmpeg 7.1 is vulnerable to Null Pointer Dereference in function iamf_read_header in /libavformat/iamfdec.c.

CVE-2024-55069 - May 02, 2025

ffmpeg 7.1 is vulnerable to Null Pointer Dereference in function iamf_read_header in /libavformat/iamfdec.c.

A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1

CVE-2025-1594 8.8 - High - February 23, 2025

A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1. This affects the function ff_aac_search_for_tns of the file libavcodec/aacenc_tns.c of the component AAC Encoder. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Memory Corruption

A vulnerability was found in FFmpeg up to 7.1

CVE-2025-1373 5.5 - Medium - February 17, 2025

A vulnerability was found in FFmpeg up to 7.1. It has been rated as problematic. Affected by this issue is the function mov_read_trak of the file libavformat/mov.c of the component MOV Parser. The manipulation leads to null pointer dereference. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The patch is identified as 43be8d07281caca2e88bfd8ee2333633e1fb1a13. It is recommended to apply a patch to fix this issue.

NULL Pointer Dereference

FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavformat library

CVE-2024-36613 - January 03, 2025

FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavformat library allowing for an integer overflow, potentially resulting in a denial-of-service (DoS) condition or other undefined behavior.

FFmpeg version n6.1.1 has a double-free vulnerability in the fftools/ffmpeg_mux_init.c component of FFmpeg

CVE-2024-35365 - January 03, 2025

FFmpeg version n6.1.1 has a double-free vulnerability in the fftools/ffmpeg_mux_init.c component of FFmpeg, specifically within the new_stream_audio function.

A flaw was found in FFmpeg's TTY Demuxer

CVE-2023-6602 5.3 - Medium - December 31, 2024

A flaw was found in FFmpeg's TTY Demuxer. This vulnerability allows possible data exfiltration via improper parsing of non-TTY-compliant input files in HLS playlists.

Insecure Direct Object Reference

A flaw was found in FFmpeg's HLS playlist parsing

CVE-2023-6603 7.5 - High - December 31, 2024

A flaw was found in FFmpeg's HLS playlist parsing. This vulnerability allows a denial of service via a maliciously crafted HLS playlist that triggers a null pointer dereference during initialization.

NULL Pointer Dereference

FFmpeg n7.0 is affected by a Double Free

CVE-2024-35368 - November 29, 2024

FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame function within libavcodec/rkmppdec.c.

FFmpeg n6.1.1 has an Out-of-bounds Read

CVE-2024-35367 - November 29, 2024

FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_altivec.c, static const vec_s8 h_subpel_filters_outer

FFmpeg n6.1.1 is Integer Overflow

CVE-2024-35366 - November 29, 2024

FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parse_options function of sbgdec.c within the libavformat module. When parsing certain options, the software does not adequately validate the input. This allows for negative duration values to be accepted without proper bounds checking.

An integer overflow in the component /libavformat/westwood_vqa.c of FFmpeg n6.1.1

CVE-2024-36616 - November 29, 2024

An integer overflow in the component /libavformat/westwood_vqa.c of FFmpeg n6.1.1 allows attackers to cause a denial of service in the application via a crafted VQA file.

FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder

CVE-2024-36615 - November 29, 2024

FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. This could lead to a data race if video encoding parameters were being exported, as the side data would be attached in the decoder thread while being read in the output thread.

FFmpeg CAF Decoder Integer Overflow Vulnerability

CVE-2024-36617 - November 29, 2024

FFmpeg n6.1.1 has an integer overflow vulnerability in the FFmpeg CAF decoder.

FFmpeg AVI Demuxer Integer Overflow Vulnerability

CVE-2024-36618 - November 29, 2024

FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library which allows for an integer overflow, potentially resulting in a denial-of-service (DoS) condition.

FFmpeg Speex Codec Extradata Integer Overflow Vulnerability

CVE-2024-35369 - November 29, 2024

In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, a potential security vulnerability exists due to insufficient validation of certain parameters when parsing Speex codec extradata. This vulnerability could lead to integer overflow conditions, potentially resulting in undefined behavior or crashes during the decoding process.

FFmpeg libavcodec WAVARC Decoder Integer Overflow Vulnerability

CVE-2024-36619 - November 29, 2024

FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows for an integer overflow when handling certain block types, leading to a denial-of-service (DoS) condition.

A vulnerability, which was classified as critical, was found in FFmpeg up to 5.1.5

CVE-2024-7272 8.8 - High - August 12, 2024

A vulnerability, which was classified as critical, was found in FFmpeg up to 5.1.5. This affects the function fill_audiodata of the file /libswresample/swresample.c. The manipulation leads to heap-based buffer overflow. It is possible to initiate the attack remotely. This issue was fixed in version 6.0 by 9903ba28c28ab18dc7b7b6fb8571cc8b5caae1a6 but a backport for 5.1 was forgotten. The exploit has been disclosed to the public and may be used. Upgrading to version 5.1.6 and 6.0 9903ba28c28ab18dc7b7b6fb8571cc8b5caae1a6 is able to address this issue. It is recommended to upgrade the affected component.

Memory Corruption

A vulnerability was found in FFmpeg up to 7.0.1

CVE-2024-7055 8.8 - High - August 06, 2024

A vulnerability was found in FFmpeg up to 7.0.1. It has been classified as critical. This affects the function pnm_decode_frame in the library /libavcodec/pnmdec.c. The manipulation leads to heap-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 7.0.2 is able to address this issue. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-273651.

Memory Corruption

FFmpeg 7.0 is vulnerable to Buffer Overflow

CVE-2024-32228 - July 01, 2024

FFmpeg 7.0 is vulnerable to Buffer Overflow. There is a SEGV at libavcodec/hevcdec.c:2947:22 in hevc_frame_end.

FFmpeg 7.0 contains a heap-buffer-overflow at libavfilter/vf_tiltandshift.c:189:5 in copy_column.

CVE-2024-32229 - July 01, 2024

FFmpeg 7.0 contains a heap-buffer-overflow at libavfilter/vf_tiltandshift.c:189:5 in copy_column.

FFmpeg 7.0 is vulnerable to Buffer Overflow

CVE-2024-32230 7.8 - High - July 01, 2024

FFmpeg 7.0 is vulnerable to Buffer Overflow. There is a negative-size-param bug at libavcodec/mpegvideo_enc.c:1216:21 in load_input_picture in FFmpeg7.0

Classic Buffer Overflow

FFmpeg v.n6.1-3-g466799d4f5

CVE-2023-50010 - April 19, 2024

FFmpeg v.n6.1-3-g466799d4f5 allows a buffer over-read at ff_gradfun_blur_line_movdqa_sse2, as demonstrated by a call to the set_encoder_id function in /fftools/ffmpeg_enc.c component.

FFmpeg v.n6.1-3-g466799d4f5

CVE-2023-50008 - April 19, 2024

FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the colorcorrect filter, in the av_malloc function in libavutil/mem.c:105:9 component.

FFmpeg v.n6.1-3-g466799d4f5

CVE-2023-50007 - April 19, 2024

FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a parameter of negative size in the av_samples_set_silence function in thelibavutil/samplefmt.c:260:9 component.

Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5

CVE-2023-49502 - April 19, 2024

Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the ff_bwdif_filter_intra_c function in the libavfilter/bwdifdsp.c:125:5 component.

Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5

CVE-2023-49501 - April 19, 2024

Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the config_eq_output function in the libavfilter/asrc_afirsrc.c:495:30 component.

FFmpeg v.n6.1-3-g466799d4f5

CVE-2023-50009 - April 19, 2024

FFmpeg v.n6.1-3-g466799d4f5 allows a heap-based buffer overflow via the ff_gaussian_blur_8 function in libavfilter/edge_template.c:116:5 component.

FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Error vulnerability in libavfilter/avf_showspectrum.c

CVE-2024-31585 - April 17, 2024

FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Error vulnerability in libavfilter/avf_showspectrum.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

FFmpeg version n6.1 was discovered to contain a heap buffer overflow vulnerability in the draw_block_rectangle function of libavfilter/vf_codecview.c

CVE-2024-31582 - April 17, 2024

FFmpeg version n6.1 was discovered to contain a heap buffer overflow vulnerability in the draw_block_rectangle function of libavfilter/vf_codecview.c. This vulnerability allows attackers to cause undefined behavior or a Denial of Service (DoS) via crafted input.

FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability in libavcodec/cbs_h266_syntax_template.c

CVE-2024-31581 - April 17, 2024

FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability in libavcodec/cbs_h266_syntax_template.c. This vulnerability allows attackers to cause undefined behavior within the application.

FFmpeg version n6.1.1 was discovered to contain a heap use-after-free

CVE-2024-31578 - April 17, 2024

FFmpeg version n6.1.1 was discovered to contain a heap use-after-free via the av_hwframe_ctx_init function.

Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, allows a local attacker to execute arbitrary code

CVE-2023-49528 - April 12, 2024

Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, allows a local attacker to execute arbitrary code and cause a denial of service (DoS) via the af_dialoguenhance.c:261:5 in the de_stereo component.

Integer overflow vulnerability in FFmpeg before n6.1

CVE-2024-22861 7.5 - High - January 27, 2024

Integer overflow vulnerability in FFmpeg before n6.1, allows attackers to cause a denial of service (DoS) via the avcodec/osq module.

Integer Overflow or Wraparound

Integer overflow vulnerability in FFmpeg before n6.1

CVE-2024-22860 9.8 - Critical - January 27, 2024

Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute arbitrary code via the jpegxl_anim_read_packet component in the JPEG XL Animation decoder.

Integer Overflow or Wraparound

Integer overflow vulnerability in FFmpeg before n6.1

CVE-2024-22862 9.8 - Critical - January 27, 2024

Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute arbitrary code via the JJPEG XL Parser.

Integer Overflow or Wraparound

Buffer Overflow vulnerability in Ffmpeg before github commit 4565747056a11356210ed8edcecb920105e40b60 allows a remote attacker to achieve an out-of-array write, execute arbitrary code

CVE-2023-47470 7.8 - High - November 16, 2023

Buffer Overflow vulnerability in Ffmpeg before github commit 4565747056a11356210ed8edcecb920105e40b60 allows a remote attacker to achieve an out-of-array write, execute arbitrary code, and cause a denial of service (DoS) via the ref_pic_list_struct function in libavcodec/evc_ps.c

Memory Corruption

FFmpeg prior to commit bf814 was discovered to contain an out of bounds read

CVE-2023-46407 5.5 - Medium - October 27, 2023

FFmpeg prior to commit bf814 was discovered to contain an out of bounds read via the dist->alphabet_size variable in the read_vlc_prefix() function.

Out-of-bounds Read

Integer overflow vulnerability in av_timecode_make_string in libavutil/timecode.c in FFmpeg version 4.3.2

CVE-2021-28429 5.5 - Medium - August 11, 2023

Integer overflow vulnerability in av_timecode_make_string in libavutil/timecode.c in FFmpeg version 4.3.2, allows local attackers to cause a denial of service (DoS) via crafted .mov file.

Integer Overflow or Wraparound

An issue was discovered in decode_frame in libavcodec/tiff.c in FFmpeg version 4.3

CVE-2020-36138 7.5 - High - August 11, 2023

An issue was discovered in decode_frame in libavcodec/tiff.c in FFmpeg version 4.3, allows remote attackers to cause a denial of service (DoS).

NULL Pointer Dereference

FFmpeg 0.7.0 and below was discovered to contain a code injection vulnerability in the component net.bramp.ffmpeg.FFmpeg

CVE-2023-39018 9.8 - Critical - July 28, 2023

FFmpeg 0.7.0 and below was discovered to contain a code injection vulnerability in the component net.bramp.ffmpeg.FFmpeg.<constructor>. This vulnerability is exploited via passing an unchecked argument. NOTE: this is disputed by multiple third parties because there are no realistic use cases in which FFmpeg.java uses untrusted input for the path of the executable file.

Code Injection

libavcodec/pthread_frame.c in FFmpeg before 5.1.2, as used in VLC and other products, leaves stale hwaccel state in worker threads, which

CVE-2022-48434 8.1 - High - March 29, 2023

libavcodec/pthread_frame.c in FFmpeg before 5.1.2, as used in VLC and other products, leaves stale hwaccel state in worker threads, which allows attackers to trigger a use-after-free and execute arbitrary code in some circumstances (e.g., hardware re-initialization upon a mid-video SPS change when Direct3D11 is used).

Dangling pointer

A null pointer dereference issue was discovered in 'FFmpeg' in decode_main_header() function of libavformat/nutdec.c file

CVE-2022-3341 5.3 - Medium - January 12, 2023

A null pointer dereference issue was discovered in 'FFmpeg' in decode_main_header() function of libavformat/nutdec.c file. The flaw occurs because the function lacks check of the return value of avformat_new_stream() and triggers the null pointer dereference error, causing an application to crash.

NULL Pointer Dereference

An issue was discovered in the FFmpeg package

CVE-2022-3109 7.5 - High - December 16, 2022

An issue was discovered in the FFmpeg package, where vp3_decode_frame in libavcodec/vp3.c lacks check of the return value of av_malloc() and will cause a null pointer dereference, impacting availability.

NULL Pointer Dereference

A vulnerability classified as problematic has been found in ffmpeg

CVE-2022-3964 8.1 - High - November 13, 2022

A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the argument y_size leads to out-of-bounds read. It is possible to initiate the attack remotely. The name of the patch is 92f9b28ed84a77138105475beba16c146bdaf984. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-213543.

Buffer Overflow

A vulnerability classified as problematic was found in ffmpeg

CVE-2022-3965 8.1 - High - November 13, 2022

A vulnerability classified as problematic was found in ffmpeg. This vulnerability affects the function smc_encode_stream of the file libavcodec/smcenc.c of the component QuickTime Graphics Video Encoder. The manipulation of the argument y_size leads to out-of-bounds read. The attack can be initiated remotely. The name of the patch is 13c13109759090b7f7182480d075e13b36ed8edd. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-213544.

Buffer Overflow

A heap out-of-bounds memory write exists in FFMPEG since version 5.1

CVE-2022-2566 7.8 - High - September 23, 2022

A heap out-of-bounds memory write exists in FFMPEG since version 5.1. The size calculation in `build_open_gop_key_points()` goes through all entries in the loop and adds `sc->ctts_data[i].count` to `sc->sample_offsets_count`. This can lead to an integer overflow resulting in a small allocation with `av_calloc()`. An attacker can cause remote code execution via a malicious mp4 file. We recommend upgrading past commit c953baa084607dd1d84c3bfcce3cf6a87c3e6e05

Integer Overflow or Wraparound

A vulnerability was found in FFmpeg 2.0 and classified as problematic

CVE-2014-125021 5.5 - Medium - June 19, 2022

A vulnerability was found in FFmpeg 2.0 and classified as problematic. This issue affects the function cmv_process_header. The manipulation leads to memory corruption. The attack may be initiated remotely. It is recommended to apply a patch to fix this issue.

Memory Corruption

A vulnerability classified as problematic has been found in FFmpeg 2.0

CVE-2014-125025 5.5 - Medium - June 19, 2022

A vulnerability classified as problematic has been found in FFmpeg 2.0. This affects the function decode_pulses. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. It is recommended to apply a patch to fix this issue.

Memory Corruption

A vulnerability has been found in FFmpeg 2.0 and classified as critical

CVE-2014-125020 7.8 - High - June 19, 2022

A vulnerability has been found in FFmpeg 2.0 and classified as critical. This vulnerability affects the function decode_update_thread_context. The manipulation leads to memory corruption. The attack can be initiated remotely. It is recommended to apply a patch to fix this issue.

Memory Corruption

A vulnerability, which was classified as problematic, was found in FFmpeg 2.0

CVE-2014-125019 5.5 - Medium - June 19, 2022

A vulnerability, which was classified as problematic, was found in FFmpeg 2.0. This affects the function decode_nal_unit of the component Slice Segment Handler. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. It is recommended to apply a patch to fix this issue.

Memory Corruption