CVE search results

1 – 10 of 508 results

Detailed view

Sort by:

CVE-2024-55069

Medium priority

Vulnerable

ffmpeg 7.1 is vulnerable to Null Pointer Dereference in function iamf_read_header in /libavformat/iamfdec.c.

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Vulnerable	Not affected	Not affected	Not affected
libav	Not in release	Not in release	Not in release	—

CVE-2025-1816

Medium priority

Some fixes available 1 of 2

A vulnerability classified as problematic has been found in FFmpeg up to 6e26f57f672b05e7b8b052007a83aef99dc81ccb. This affects the function audio_element_obu of the file libavformat/iamf_parse.c of the component IAMF File...

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Not affected	Not affected	Not affected	Not affected
libav	Not in release	Not in release	Not in release	—

CVE-2025-1594

Medium priority

Vulnerable

A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1. This affects the function ff_aac_search_for_tns of the file libavcodec/aacenc_tns.c of the component AAC Encoder. The manipulation leads to...

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Vulnerable	Vulnerable	Vulnerable	Vulnerable
libav	Not in release	Not in release	Not in release	—

CVE-2025-25473

Medium priority

Some fixes available 7 of 8

FFmpeg git master before commit c08d30 was discovered to contain a NULL pointer dereference via the component libavformat/mov.c.

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Fixed	Fixed	Fixed	Fixed
libav	Not in release	Not in release	Not in release	—

CVE-2025-25471

Medium priority

Needs evaluation

FFmpeg git master before commit fd1772 was discovered to contain a NULL pointer dereference via the component libavformat/mov.c.

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Not affected	Not affected	Not affected	Not affected
libav	Not in release	Not in release	Not in release	—

CVE-2025-22920

Medium priority

Needs evaluation

A heap buffer overflow vulnerability in FFmpeg before commit 4bf784c allows attackers to trigger a memory corruption via supplying a crafted media file in avformat when processing tile grid group streams. This can lead to a Denial...

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Not affected	Not affected	Not affected	Not affected
libav	Not in release	Not in release	Not in release	—

CVE-2025-22919

Medium priority

Some fixes available 6 of 7

A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows attackers to cause a Denial of Service (DoS) via opening a crafted AAC file.

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Fixed	Fixed	Fixed	Fixed
libav	Not in release	Not in release	Not in release	—

CVE-2025-25469

Medium priority

Needs evaluation

FFmpeg git-master before commit d5873b was discovered to contain a memory leak in the component libavutil/iamf.c.

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Not affected	Not affected	Not affected	Not affected
libav	Not in release	Not in release	Not in release	—

CVE-2025-25468

Medium priority

Needs evaluation

FFmpeg git-master before commit d5873b was discovered to contain a memory leak in the component libavutil/mem.c.

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Not affected	Not affected	Not affected	Not affected
libav	Not in release	Not in release	Not in release	—

CVE-2025-25467

Medium priority

Needs evaluation

Insufficient tracking and releasing of allocated used memory in libx264 git master allows attackers to execute arbitrary code via creating a crafted AAC file.

3 affected packages

ffmpeg, libav, x264

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation
libav	Not in release	Not in release	Not in release	—
x264	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

Export to JSON

Results by page:

Search CVE reports