CVE-2023-6604

Medium CVSS: 5.3

A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation.

Vendor

Ffmpeg

Product

Ffmpeg

CWE

CWE-99

Yayın Tarihi

2025-01-06 17:15:14

Güncelleme

2025-11-03 20:16:07

Source Identifier

patrick@puiterwijk.org

KEV Date Added

Kategoriler

CWE-99 Ffmpeg MEDIUM Ffmpeg 2025

Referanslar

https://bugzilla.redhat.com/show_bug.cgi?id=2334337 https://lists.debian.org/debian-lts-announce/2025/07/msg00004.html

Benzer Kayıtlar

Medium

CVE-2025-69693

Out-of-bounds read in FFmpeg 8.0 and 8.0.1 RV60 video decoder (libavcodec/rv60dec.c). The quantization parameter (qp) va…

Medium

CVE-2025-10256

A NULL pointer dereference vulnerability exists in FFmpeg’s Firequalizer filter (libavfilter/af_firequalizer.c) due to a…

Low

CVE-2025-12343

A flaw was found in FFmpeg’s TensorFlow backend within the libavfilter/dnn_backend_tf.c source file. The issue occurs in…

High

CVE-2025-63757

Integer overflow vulnerability in the yuv2ya16_X_c_template function in libswscale/output.c in FFmpeg 8.0.

Medium

CVE-2024-55069

ffmpeg 7.1 is vulnerable to Null Pointer Dereference in function iamf_read_header in /libavformat/iamfdec.c.

Medium

CVE-2025-1594

A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1. This affects the function ff_aac_searc…