U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): cpe:2.3:a:libav:libav:0.8:beta2:*:*:*:*:*:*
There are 39 matching records.
Displaying matches 1 through 20.
Vuln ID Summary CVSS Severity
CVE-2014-5271

Heap-based buffer overflow in the encode_slice function in libavcodec/proresenc_kostya.c in FFMpeg before 1.1.14, 1.2.x before 1.2.8, 2.x before 2.2.7, and 2.3.x before 2.3.3 and Libav before 10.5 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via unspecified vectors.

Published: November 03, 2014; 11:55:05 AM -0500
V3.x:(not available)
V2.0: 7.5 HIGH
CVE-2014-3984

Multiple unspecified vulnerabilities in Libav before 0.8.12 allow remote attackers to have unknown impact and vectors.

Published: June 06, 2014; 10:55:05 AM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2011-3937

The H.263 codec (libavcodec/h263dec.c) in FFmpeg 0.7.x before 0.7.12, 0.8.x before 0.8.11, and unspecified versions before 0.10, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.5, and 0.8.x before 0.8.1 has unspecified impact and attack vectors related to "width/height changing with frame threads."

Published: January 04, 2013; 7:55:02 PM -0500
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-5144

Google Chrome before 23.0.1271.97, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, do not properly perform AAC decoding, which allows remote attackers to cause a denial of service (stack memory corruption) or possibly have unspecified other impact via vectors related to "an off-by-one overwrite when switching to LTP profile from MAIN."

Published: December 12, 2012; 6:38:44 AM -0500
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2804

Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.5 has unknown impact and attack vectors, related to "reallocation code" and the luma height and width.

Published: September 10, 2012; 6:55:04 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2803

Double free vulnerability in the mpeg_decode_frame function in libavcodec/mpeg12.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, has unknown impact and attack vectors, related to resetting the data size value.

Published: September 10, 2012; 6:55:04 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2802

Unspecified vulnerability in the ac3_decode_frame function in libavcodec/ac3dec.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.4 has unknown impact and attack vectors, related to the "number of output channels" and "out of array writes."

Published: September 10, 2012; 6:55:04 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2801

Unspecified vulnerability in libavcodec/avs.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to dimensions and "out of array writes."

Published: September 10, 2012; 6:55:04 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2800

Unspecified vulnerability in the ff_ivi_process_empty_tile function in libavcodec/ivi_common.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors in which the "tile size ... mismatches parameters" and triggers "writing into a too small array."

Published: September 10, 2012; 6:55:04 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2798

Unspecified vulnerability in the decode_dds1 function in libavcodec/dfa.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to an "out of array write."

Published: September 10, 2012; 6:55:04 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2797

Unspecified vulnerability in the decode_frame_mp3on4 function in libavcodec/mpegaudiodec.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.5 has unknown impact and attack vectors related to a calculation that prevents a frame from being "large enough."

Published: September 10, 2012; 6:55:04 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2796

Unspecified vulnerability in the vc1_decode_frame function in libavcodec/vc1dec.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.4 has unknown impact and attack vectors, related to inconsistencies in "coded slice positions and interlacing" that trigger "out of array writes."

Published: September 10, 2012; 6:55:03 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2794

Unspecified vulnerability in the decode_mb_info function in libavcodec/indeo5.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors in which the "allocated tile size ... mismatches parameters."

Published: September 10, 2012; 6:55:03 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2793

Unspecified vulnerability in the lag_decode_zero_run_line function in libavcodec/lagarith.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors related to "too many zeros."

Published: September 10, 2012; 6:55:03 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2791

Multiple unspecified vulnerabilities in the (1) decode_band_hdr function in indeo4.c and (2) ff_ivi_decode_blocks function in ivi_common.c in libavcodec/ in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.5, have unknown impact and attack vectors, related to the "transform size."

Published: September 10, 2012; 6:55:03 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2790

Unspecified vulnerability in the read_var_block_data function in libavcodec/alsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to the "number of decoded samples in first sub-block in BGMC mode."

Published: September 10, 2012; 6:55:03 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2789

Unspecified vulnerability in the avi_read_packet function in libavformat/avidec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to a large number of vector coded coefficients (num_vec_coeffs).

Published: September 10, 2012; 6:55:03 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2788

Unspecified vulnerability in the avi_read_packet function in libavformat/avidec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to an "out of array read" when a "packet is shrunk."

Published: September 10, 2012; 6:55:03 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2787

Unspecified vulnerability in the decode_frame function in libavcodec/indeo4.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.4 has unknown impact and attack vectors, related to the "setup width/height."

Published: September 10, 2012; 6:55:03 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-2786

Unspecified vulnerability in the decode_wdlt function in libavcodec/dfa.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to an "out of array write."

Published: September 10, 2012; 6:55:03 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH