ffmpeg security advisories
7 threat alerts tracking vulnerabilities and security advisories that affect ffmpeg products.
Vulnios monitors ffmpeg CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent ffmpeg security news in one place, or click into an individual alert for full detail.
Critical Vulnerability: CVE-2017-7866 — ffmpeg — ffmpeg
FFmpeg before 2017-01-23 has an out-of-bounds write caused by a stack-based buffer overflow related to the decode_zbuf function in libavcodec/pngdec.c.
criticalCVE-2017-7866Critical Vulnerability: CVE-2017-7862 — ffmpeg — ffmpeg
FFmpeg before 2017-02-07 has an out-of-bounds write caused by a heap-based buffer overflow related to the decode_frame function in libavcodec/pictordec.c.
criticalCVE-2017-7862Critical Vulnerability: CVE-2017-7859 — ffmpeg — ffmpeg
FFmpeg before 2017-03-05 has an out-of-bounds write caused by a heap-based buffer overflow related to the ff_h264_slice_context_init function in libavcodec/h264dec.c.
criticalCVE-2017-7859Critical Vulnerability: CVE-2016-10190 — ffmpeg — ffmpeg
Heap-based buffer overflow in libavformat/http.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote web servers to execute arbitrary code via a negat
criticalCVE-2016-10190Critical Vulnerability: CVE-2016-10192 — ffmpeg — ffmpeg
Heap-based buffer overflow in ffserver.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote attackers to execute arbitrary code by leveraging failure
criticalCVE-2016-10192Critical Vulnerability: CVE-2016-10191 — ffmpeg — ffmpeg
Heap-based buffer overflow in libavformat/rtmppkt.c in FFmpeg before 2.8.10, 3.0.x before 3.0.5, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 allows remote attackers to execute arbitrary code by leverag
criticalCVE-2016-10191Critical Vulnerability: CVE-2016-6164 — ffmpeg — ffmpeg
Integer overflow in the mov_build_index function in libavformat/mov.c in FFmpeg before 2.8.8, 3.0.x before 3.0.3 and 3.1.x before 3.1.1 allows remote attackers to have unspecified impact via vectors i
criticalCVE-2016-6164
Track ffmpeg exposure across your environment
Vulnios automatically cross-references your asset inventory against new ffmpeg CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan