Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Package Hub 12 SP1 package ffmpeg, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (6)
CVE-2016-10190 — CVSS 9.8 (critical): Heap-based buffer overflow in libavformat/http.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2…
CVE-2016-7502 — CVSS 7.8 (high): The cavs_idct8_add_c function in libavcodec/cavsdsp.c in FFmpeg before 3.1.4 is vulnerable to reading out-of-bounds memory when decoding…
CVE-2016-7555 — CVSS 5.5 (medium): The avi_read_header function in libavformat/avidec.c in FFmpeg before 3.1.4 is vulnerable to memory leak when decoding an AVI file that has…
CVE-2016-7562 — CVSS 5.5 (medium): The ff_draw_pc_font function in libavcodec/cga_data.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (buffer…
CVE-2016-7785 — CVSS 5.5 (medium): The avi_read_seek function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (assert…
CVE-2016-7905 — CVSS 5.5 (medium): The read_gab2_sub function in libavformat/avidec.c in FFmpeg before 3.1.4 allows remote attackers to cause a denial of service (NULL…