Xinghang Lv

Researcher fromB429 Laboratory, School of Cyber Science and Engineering (SCSE), Wuhan University
#12168of 53,635
22.5Total CVSS
Vulnerabilities · 3
High
3
PT-2026-32368
7.5
2026-04-13
FFmpeg · Ffmpeg · CVE-2026-30997
**Name of the Vulnerable Software and Affected Versions** FFmpeg version 8.0.1 **Description** An out-of-bounds read occurs in the `read global param()` function within the libavcodec/av1dec.c component. This issue allows attackers to cause a Denial of Service (DoS) by providing a crafted input. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2026-32369
7.5
2026-04-13
FFmpeg · Ffmpeg · CVE-2026-30998
**Name of the Vulnerable Software and Affected Versions** FFmpeg version 8.0.1 **Description** An improper resource deallocation and closure issue in the tools/zmqsend.c component allows attackers to cause a Denial of Service (DoS) by supplying a crafted input file. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2026-32370
7.5
2026-04-13
FFmpeg · Ffmpeg · CVE-2026-30999
**Name of the Vulnerable Software and Affected Versions** FFmpeg version 8.0.1 **Description** A heap buffer overflow in the `av bprint finalize()` function allows attackers to cause a Denial of Service (DoS) via a crafted input. A heap buffer overflow occurs when a program writes more data to a heap-allocated memory block than it can hold, potentially corrupting data or crashing the application. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.