Known Vulnerabilities for products from Libav
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Libav".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-18778 | In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_p_mb_intfi in vc1_block.c that allows an attacker to caus... | 6.5 - MEDIUM | 2021-08-23 | 2022-09-20 |
| CVE-2020-18776 | In Libav 12.3, there is a segmentation fault in vc1_decode_b_mb_intfr in vc1_block.c that allows an attacker to cause denial-... | 6.5 - MEDIUM | 2021-08-23 | 2021-08-31 |
| CVE-2020-18775 | In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_b_mb_intfi in vc1_block.c that allows an attacker to caus... | 6.5 - MEDIUM | 2021-08-23 | 2022-09-20 |
| CVE-2019-14443 | An issue was discovered in Libav 12.3. Division by zero in range_decode_culshift in libavcodec/apedec.c allows remote attacke... | 6.5 - MEDIUM | 2019-07-30 | 2023-03-03 |
| CVE-2019-14442 | In mpc8_read_header in libavformat/mpc8.c in Libav 12.3, an input file can result in an avio_seek infinite loop and hang, wit... | 6.5 - MEDIUM | 2019-07-30 | 2023-03-03 |
| CVE-2019-14441 | ** DISPUTED ** An issue was discovered in Libav 12.3. An access violation allows remote attackers to cause a denial of servic... | 6.5 - MEDIUM | 2019-07-30 | 2023-11-07 |
| CVE-2019-14372 | In Libav 12.3, there is an infinite loop in the function wv_read_block_header() in the file wvdec.c. | 6.5 - MEDIUM | 2019-07-28 | 2023-03-06 |
| CVE-2019-14371 | An issue was discovered in Libav 12.3. There is an infinite loop in the function mov_probe in the file libavformat/mov.c, rel... | 6.5 - MEDIUM | 2019-07-28 | 2020-08-24 |
| CVE-2019-9720 | A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video... | 6.5 - MEDIUM | 2019-09-19 | 2021-07-21 |
| CVE-2019-9719 | ** DISPUTED ** A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via ... | 8.8 - HIGH | 2019-09-19 | 2023-11-07 |
| CVE-2019-9717 | In Libav 12.3, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matros... | 6.5 - MEDIUM | 2019-09-19 | 2021-07-21 |
| CVE-2018-20001 | In Libav 12.3, there is a floating point exception in the range_decode_culshift function (called from range_decode_bits) in l... | 6.5 - MEDIUM | 2018-12-10 | 2019-01-03 |
| CVE-2018-19130 | ** DISPUTED ** In Libav 12.3, there is an invalid memory access in vc1_decode_frame in libavcodec/vc1dec.c that allows attack... | 6.5 - MEDIUM | 2018-11-09 | 2023-11-07 |
| CVE-2018-19129 | In Libav 12.3, a NULL pointer dereference (RIP points to zero) issue in ff_mpa_synth_filter_float in libavcodec/mpegaudiodsp_... | 6.5 - MEDIUM | 2018-11-09 | 2018-12-12 |
| CVE-2018-19128 | In Libav 12.3, there is a heap-based buffer over-read in decode_frame in libavcodec/lcldec.c that allows an attacker to cause... | 6.5 - MEDIUM | 2018-11-09 | 2019-12-05 |
| CVE-2018-18829 | There exists a NULL pointer dereference in ff_vc1_parse_frame_header_adv in vc1.c in Libav 12.3, which allows attackers to ca... | 6.5 - MEDIUM | 2018-10-30 | 2018-12-06 |
| CVE-2018-18828 | There exists a heap-based buffer overflow in vc1_decode_i_block_adv in vc1_block.c in Libav 12.3, which allows attackers to c... | 6.5 - MEDIUM | 2018-10-30 | 2020-08-24 |
| CVE-2018-18827 | There exists a heap-based buffer over-read in ff_vc1_pred_dc in vc1_block.c in Libav 12.3, which allows attackers to cause a ... | 6.5 - MEDIUM | 2018-10-30 | 2018-12-06 |
| CVE-2018-18826 | There exists a heap-based buffer overflow in vc1_decode_p_mb_intfi in vc1_block.c in Libav 12.3, which allows attackers to ca... | 6.5 - MEDIUM | 2018-10-30 | 2020-08-24 |
| CVE-2018-11224 | An issue was discovered in Libav 12.3. A read access violation in the in_table_init16 function in libavcodec/aacsbr.c allows ... | 6.5 - MEDIUM | 2018-05-17 | 2018-06-25 |
Known software with vulnerabilities from Libav
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Libav | Libav | 0.3 |