彙總 Libav 相關全部產品的 CVE 與安全漏洞情報,包括 CVSS、EPSS、公開時間與漏洞情報資料。
已披露問題常與 緩衝區溢位、記憶體損壞與輸入驗證問題 相關,可能在 生產負載與軟體部署 場景中帶來 記憶體損壞與異常行為 等暴露風險。
相關漏洞資料主要來源於公開漏洞披露與安全公告,可用於評估歷史漏洞暴露面與修補優先順序。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2025-8586 | A vulnerability, which was classified as problematic, was found in libav up to 12.3. This affects the function ff_seek_frame_binary of the file /libavformat/utils.c of the component MPEG File Parser. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The bug was initially reported by the researcher to the wrong project. This vulnerability only affects products that are no longer | [email protected] | 1.9 | 0.21% | 2025-08-05 | 2026-04-29 |
| CVE-2025-8585 | A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The bug was initially reported by the researcher to the wrong project. This vulnerability only affects products that are no longer supported by the maintainer. | [email protected] | 1.9 | 0.20% | 2025-08-05 | 2026-04-29 |
| CVE-2025-8584 | A vulnerability classified as problematic was found in libav up to 12.3. Affected by this vulnerability is the function av_buffer_unref of the file libavutil/buffer.c of the component AVI File Parser. The manipulation leads to null pointer dereference. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The bug was initially reported by the researcher to the wrong project. This vulnerability only affects products that are no longer supp | [email protected] | 1.9 | 0.20% | 2025-08-05 | 2026-04-29 |
| CVE-2020-18778 | In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_p_mb_intfi in vc1_block.c that allows an attacker to cause denial-of-service via a crafted file. | [email protected] | 6.5 | 0.86% | 2021-08-23 | 2024-11-21 |
| CVE-2020-18776 | In Libav 12.3, there is a segmentation fault in vc1_decode_b_mb_intfr in vc1_block.c that allows an attacker to cause denial-of-service via a crafted file. | [email protected] | 6.5 | 0.88% | 2021-08-23 | 2024-11-21 |
| CVE-2020-18775 | In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_b_mb_intfi in vc1_block.c that allows an attacker to cause denial-of-service via a crafted file. | [email protected] | 6.5 | 0.86% | 2021-08-23 | 2024-11-21 |
| CVE-2014-4609 | Integer overflow in the get_len function in libavutil/lzo.c in Libav before 0.8.13, 9.x before 9.14, and 10.x before 10.2 allows remote attackers to execute arbitrary code via a crafted Literal Run. | [email protected] | 8.8 | 5.74% | 2020-01-14 | 2024-11-21 |
| CVE-2019-9720 | A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuses snprintf. | [email protected] | 6.5 | 1.09% | 2019-09-19 | 2024-11-21 |
| CVE-2019-9719 | A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c misuses snprintf. NOTE: Third parties dispute that this is a vulnerability because “no evidence of a vulnerability is provided” and only “a generic warning from a static code analysis” is provided | [email protected] | 8.8 | 2.02% | 2019-09-19 | 2024-11-21 |
| CVE-2019-9717 | In Libav 12.3, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because srt_to_ass in libavcodec/srtdec.c has a complex format argument to sscanf. | [email protected] | 6.5 | 1.28% | 2019-09-19 | 2024-11-21 |
| CVE-2019-14443 | An issue was discovered in Libav 12.3. Division by zero in range_decode_culshift in libavcodec/apedec.c allows remote attackers to cause a denial of service (application crash), as demonstrated by avconv. | [email protected] | 6.5 | 1.20% | 2019-07-30 | 2024-11-21 |
| CVE-2019-14442 | In mpc8_read_header in libavformat/mpc8.c in Libav 12.3, an input file can result in an avio_seek infinite loop and hang, with 100% CPU consumption. Attackers could leverage this vulnerability to cause a denial of service via a crafted file. | [email protected] | 6.5 | 1.02% | 2019-07-30 | 2024-11-21 |
| CVE-2019-14441 | An issue was discovered in Libav 12.3. An access violation allows remote attackers to cause a denial of service (application crash), as demonstrated by avconv. This is related to ff_mpa_synth_filter_float in avcodec/mpegaudiodsp_template.c. NOTE: This may be a duplicate of CVE-2018-19129 | [email protected] | 6.5 | 1.16% | 2019-07-30 | 2024-11-21 |
| CVE-2019-14372 | In Libav 12.3, there is an infinite loop in the function wv_read_block_header() in the file wvdec.c. | [email protected] | 6.5 | 1.12% | 2019-07-28 | 2024-11-21 |
| CVE-2019-14371 | An issue was discovered in Libav 12.3. There is an infinite loop in the function mov_probe in the file libavformat/mov.c, related to offset and tag. | [email protected] | 6.5 | 1.05% | 2019-07-28 | 2024-11-21 |
| CVE-2017-5984 | In libavcodec in Libav 9.21, ff_h264_execute_ref_pic_marking() has a heap-based buffer over-read. | [email protected] | 6.5 | 1.14% | 2019-05-22 | 2024-11-21 |
| CVE-2018-20001 | In Libav 12.3, there is a floating point exception in the range_decode_culshift function (called from range_decode_bits) in libavcodec/apedec.c that will lead to remote denial of service via crafted input. | [email protected] | 6.5 | 1.01% | 2018-12-10 | 2024-11-21 |
| CVE-2018-19130 | In Libav 12.3, there is an invalid memory access in vc1_decode_frame in libavcodec/vc1dec.c that allows attackers to cause a denial-of-service via a crafted aac file. NOTE: This may be a duplicate of CVE-2017-17127 | [email protected] | 6.5 | 1.13% | 2018-11-09 | 2024-11-21 |
| CVE-2018-19129 | In Libav 12.3, a NULL pointer dereference (RIP points to zero) issue in ff_mpa_synth_filter_float in libavcodec/mpegaudiodsp_template.c can cause a segmentation fault (application crash) via a crafted mov file. | [email protected] | 6.5 | 0.90% | 2018-11-09 | 2024-11-21 |
| CVE-2018-19128 | In Libav 12.3, there is a heap-based buffer over-read in decode_frame in libavcodec/lcldec.c that allows an attacker to cause denial-of-service via a crafted avi file. | [email protected] | 6.5 | 1.06% | 2018-11-09 | 2024-11-21 |