CVE-2022-1475 An integer overflow was found in FFmpeg versions before 4.4.2 and 5.0.1 in g729_parse() when processing a specially crafted file.

CVE-2022-1475 An integer overflow was found in FFmpeg versions before 4.4.2 and 5.0.1 in g729_parse() when processing a specially crafted file.

A remote attacker could exploit this issue to cause a denial of service via a crafted file. This issue was addressed by updating FFmpeg.

An information disclosure vulnerability was found in FFmpeg versions prior to 4.4.2, which allowed an attacker to disclose potentially sensitive information on a system running a vulnerable application via a specially crafted file. This issue was addressed by updating ffmpeg to version 4.4.2.

An application crash vulnerability was found in FFmpeg versions prior to 4.4.2, which allowed an attacker to crash a vulnerable application via a specially crafted file. This issue was addressed by updating FFmpeg.

An out-of-bounds memory read vulnerability was found in FFmpeg versions prior to 4.4.2, which could lead to denial of service or arbitrary code execution in a privileged context. This issue was addressed by updating FFmpeg.

An out-of-bounds memory write vulnerability was found in FFmpeg versions prior to 4.4.2, which could lead to denial of service or arbitrary code execution in a privileged context. This issue was addressed by updating FFmpeg.

An integer overflow vulnerability was found in FFmpeg versions prior to 4.4.2, which could lead to denial of service or arbitrary code execution in a privileged context. This issue was addressed by updating FFmpeg.

A heap buffer overflow vulnerability was found in FFmpeg versions prior to 4.4.2, which could lead

CVE-2023-1476

A remote attacker could exploit this vulnerability to cause a denial of service via a specially crafted file. This issue was addressed by updating FFmpeg.

An information disclosure vulnerability was found in FFmpeg versions prior to 4.4.2, which allowed an attacker to disclose potentially sensitive information on a system running a vulnerable application via a specially crafted file. This issue was addressed by updating ffmpeg to version 4.4.2.

An application crash vulnerability was found in FFmpeg versions prior to 4.4.2, which allowed an attacker to crash a vulnerable application via a specially crafted file. This issue was addressed by updating FFmpeg.

References

Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe