Описание
FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability in libavcodec/cbs_h266_syntax_template.c. This vulnerability allows attackers to cause undefined behavior within the application.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| ffmpeg | fixed | 7:7.0-1 | experimental | package |
| ffmpeg | fixed | 7:7.0.1-3 | package | |
| ffmpeg | not-affected | bookworm | package | |
| ffmpeg | not-affected | bullseye | package | |
| ffmpeg | not-affected | buster | package |
Примечания
Fixed by https://github.com/ffmpeg/ffmpeg/commit/ce0c178a408d43e71085c28a47d50dc939b60196 (n7.0)
EPSS
Связанные уязвимости
FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability in libavcodec/cbs_h266_syntax_template.c. This vulnerability allows attackers to cause undefined behavior within the application.
FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability in libavcodec/cbs_h266_syntax_template.c. This vulnerability allows attackers to cause undefined behavior within the application.
FFmpeg version n6.1 was discovered to contain an improper validation of array index vulnerability in libavcodec/cbs_h266_syntax_template.c. This vulnerability allows attackers to cause undefined behavior within the application.
Уязвимость файла libavcodec/cbs_h266_syntax_template.c мультимедийной библиотеки FFmpeg, позволяющая нарушителю выполнить произвольный код
EPSS