Debian Ffmpeg vulnerabilities

CVE-2024-22862 [CRITICAL] CVE-2024-22862: ffmpeg - Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to... Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute arbitrary code via the JJPEG XL Parser. Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 7:6.1-1) sid: resolved (fixed in 7:6.1-1) trixie: resolved (fixed in 7:6.1-1)

CVE-2024-22861 [HIGH] CVE-2024-22861: ffmpeg - Integer overflow vulnerability in FFmpeg before n6.1, allows attackers to cause ... Integer overflow vulnerability in FFmpeg before n6.1, allows attackers to cause a denial of service (DoS) via the avcodec/osq module. Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 7:6.1-1) sid: resolved (fixed in 7:6.1-1) trixie: resolved (fixed in 7:6.1-1)

CVE-2024-55069 [MEDIUM] CVE-2024-55069: ffmpeg - ffmpeg 7.1 is vulnerable to Null Pointer Dereference in function iamf_read_heade... ffmpeg 7.1 is vulnerable to Null Pointer Dereference in function iamf_read_header in /libavformat/iamfdec.c. Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 7:7.1.1-1) sid: resolved (fixed in 7:7.1.1-1) trixie: resolved (fixed in 7:7.1.1-1)

CVE-2024-32228 [MEDIUM] CVE-2024-32228: ffmpeg - FFmpeg 7.0 is vulnerable to Buffer Overflow. There is a SEGV at libavcodec/hevcd... FFmpeg 7.0 is vulnerable to Buffer Overflow. There is a SEGV at libavcodec/hevcdec.c:2947:22 in hevc_frame_end. Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 7:7.0.1-3) sid: resolved (fixed in 7:7.0.1-3) trixie: resolved (fixed in 7:7.0.1-3)

CVE-2024-22860 [CRITICAL] CVE-2024-22860: ffmpeg - Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to... Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute arbitrary code via the jpegxl_anim_read_packet component in the JPEG XL Animation decoder. Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 7:6.1-1) sid: resolved (fixed in 7:6.1-1) trixie: resolved (fixed in 7:6.1-1)

CVE-2024-35365 [HIGH] CVE-2024-35365: ffmpeg - FFmpeg version n6.1.1 has a double-free vulnerability in the fftools/ffmpeg_mux_... FFmpeg version n6.1.1 has a double-free vulnerability in the fftools/ffmpeg_mux_init.c component of FFmpeg, specifically within the new_stream_audio function. Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 7:7.0.1-3) sid: resolved (fixed in 7:7.0.1-3) trixie: resolved (fixed in 7:7.0.1-3)

CVE-2024-36619 [MEDIUM] CVE-2024-36619: ffmpeg - FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec librar... FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows for an integer overflow when handling certain block types, leading to a denial-of-service (DoS) condition. Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 7:7.1-3) sid: resolved (fixed in 7:7.1-3) trixie: resolved (fixed in 7:7.1-3)

CVE-2023-51798 [HIGH] CVE-2023-51798: ffmpeg - Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local att... Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via a floating point exception (FPE) error at libavfilter/vf_minterpolate.c:1078:60 in interpolate. Scope: local bookworm: resolved (fixed in 7:5.1.5-0+deb12u1) bullseye: resolved (fixed in 7:4.3.7-0+deb11u1) forky: resolved (fixed in 7:7.0.1-3) sid: resolv

CVE-2023-50008 [HIGH] CVE-2023-50008: ffmpeg - FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the colorcorrec... FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the colorcorrect filter, in the av_malloc function in libavutil/mem.c:105:9 component. Scope: local bookworm: resolved (fixed in 7:5.1.7-0+deb12u1) bullseye: resolved forky: resolved (fixed in 7:7.0.1-3) sid: resolved (fixed in 7:7.0.1-3) trixie: resolved (fixed in 7:7.0.1-3)

CVE-2023-6605 [HIGH] CVE-2023-6605: ffmpeg - A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows ar... A flaw was found in FFmpeg's DASH playlist support. This vulnerability allows arbitrary HTTP GET requests to be made on behalf of the machine running FFmpeg via a crafted DASH playlist containing malicious URLs. Scope: local bookworm: resolved (fixed in 7:5.1.7-0+deb12u1) bullseye: resolved (fixed in 7:4.3.9-0+deb11u1) forky: resolved (fixed in 7:7.1.1-1) sid: resolved

CVE-2023-6603 [HIGH] CVE-2023-6603: ffmpeg - A flaw was found in FFmpeg's HLS playlist parsing. This vulnerability allows a d... A flaw was found in FFmpeg's HLS playlist parsing. This vulnerability allows a denial of service via a maliciously crafted HLS playlist that triggers a null pointer dereference during initialization. Scope: local bookworm: resolved (fixed in 7:5.0.1-2) bullseye: resolved (fixed in 7:4.3.9-0+deb11u2) forky: resolved (fixed in 7:5.0.1-2) sid: resolved (fixed in 7:5.0.1-2

CVE-2023-49528 [HIGH] CVE-2023-49528: ffmpeg - Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, allows a loc... Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, allows a local attacker to execute arbitrary code and cause a denial of service (DoS) via the af_dialoguenhance.c:261:5 in the de_stereo component. Scope: local bookworm: open bullseye: resolved forky: resolved (fixed in 7:7.0.1-3) sid: resolved (fixed in 7:7.0.1-3) trixie: resolved (fixed in 7:7.0.1

CVE-2023-49502 [HIGH] CVE-2023-49502: ffmpeg - Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local atta... Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the ff_bwdif_filter_intra_c function in the libavfilter/bwdifdsp.c:125:5 component. Scope: local bookworm: resolved (fixed in 7:5.1.7-0+deb12u1) bullseye: resolved (fixed in 7:4.3.8-0+deb11u1) forky: resolved (fixed in 7:7.0.1-3) sid: resolved (fixed in

CVE-2023-50010 [HIGH] CVE-2023-50010: ffmpeg - FFmpeg v.n6.1-3-g466799d4f5 allows a buffer over-read at ff_gradfun_blur_line_mo... FFmpeg v.n6.1-3-g466799d4f5 allows a buffer over-read at ff_gradfun_blur_line_movdqa_sse2, as demonstrated by a call to the set_encoder_id function in /fftools/ffmpeg_enc.c component. Scope: local bookworm: resolved (fixed in 7:5.1.5-0+deb12u1) bullseye: resolved (fixed in 7:4.3.7-0+deb11u1) forky: resolved (fixed in 7:7.0.1-3) sid: resolved (fixed in 7:7.0.1-3) trix

CVE-2023-51794 [HIGH] CVE-2023-51794: ffmpeg - Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local att... Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/af_stereowiden.c:120:69. Scope: local bookworm: resolved (fixed in 7:5.1.5-0+deb12u1) bullseye: resolved (fixed in 7:4.3.7-0+deb11u1) forky: resolved (fixed in 7:7.0.1-3) sid: resolved (fixed in 7:7.0.1-3) trixie: resolved (fixed in 7:7.

CVE-2023-51793 [HIGH] CVE-2023-51793: ffmpeg - Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local att... Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavutil/imgutils.c:353:9 in image_copy_plane. Scope: local bookworm: resolved (fixed in 7:5.1.5-0+deb12u1) bullseye: resolved (fixed in 7:4.3.7-0+deb11u1) forky: resolved (fixed in 7:7.0.1-3) sid: resolved (fixed in 7:7.0.1-3) trixie: resolved (fi

CVE-2023-51795 [HIGH] CVE-2023-51795: ffmpeg - Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local att... Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/avf_showspectrum.c:1789:52 component in showspectrumpic_request_frame Scope: local bookworm: resolved (fixed in 7:5.1.5-0+deb12u1) bullseye: resolved forky: resolved (fixed in 7:7.0.1-3) sid: resolved (fixed in 7:7.0.1-3) trixie: resolve

CVE-2023-6601 [MEDIUM] CVE-2023-6601: ffmpeg - A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows bypassing un... A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows bypassing unsafe file extension checks and triggering arbitrary demuxers via base64-encoded data URIs appended with specific file extensions. Scope: local bookworm: open bullseye: open forky: resolved (fixed in 7:6.1-1) sid: resolved (fixed in 7:6.1-1) trixie: resolved (fixed in 7:6.1-1)

CVE-2023-50007 [MEDIUM] CVE-2023-50007: ffmpeg - FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a parameter of ... FFmpeg v.n6.1-3-g466799d4f5 allows an attacker to trigger use of a parameter of negative size in the av_samples_set_silence function in thelibavutil/samplefmt.c:260:9 component. Scope: local bookworm: resolved (fixed in 7:5.1.7-0+deb12u1) bullseye: resolved forky: resolved (fixed in 7:7.0.1-3) sid: resolved (fixed in 7:7.0.1-3) trixie: resolved (fixed in 7:7.0.1-3)

CVE-2023-6604 [MEDIUM] CVE-2023-6604: ffmpeg - A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU ... A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation. Scope: local bookworm: resolved (fixed in 7:5.1.7-0+deb12u1) bullseye: resolved (fixed in 7:4.3.9-0+de