CVE search results

21 – 30 of 349 results

Detailed view

Sort by:

CVE-2025-7700

Medium priority

Some fixes available 3 of 7

A flaw was found in FFmpeg’s ALS audio decoder, where it does not properly check for memory allocation failures. This can cause the application to crash when processing certain malformed audio files. While it does not lead to data...

2 affected packages

ffmpeg, libav

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ffmpeg	Fixed	Ignored	Ignored	Ignored
libav	Not in release	Not in release	—	—

CVE-2025-48175

Medium priority

Needs evaluation

In libavif before 1.3.0, avifImageRGBToYUV in reformat.c has integer overflows in multiplications involving rgbRowBytes, yRowBytes, uRowBytes, and vRowBytes.

1 affected package

libavif

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libavif	Needs evaluation	Needs evaluation	Not in release	—

CVE-2025-48174

Medium priority

Needs evaluation

In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream->offset+size.

1 affected package

libavif

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libavif	Needs evaluation	Needs evaluation	Not in release	—

CVE-2024-55069

Medium priority

Needs evaluation

ffmpeg 7.1 is vulnerable to Null Pointer Dereference in function iamf_read_header in /libavformat/iamfdec.c.

2 affected packages

libav, ffmpeg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	Not in release	Not in release	Not in release	—
ffmpeg	Not affected	Not affected	Not affected	Not affected

CVE-2025-1816

Medium priority

Some fixes available 1 of 2

A vulnerability classified as problematic has been found in FFmpeg up to 6e26f57f672b05e7b8b052007a83aef99dc81ccb. This affects the function audio_element_obu of the file libavformat/iamf_parse.c of the component IAMF File...

2 affected packages

libav, ffmpeg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	Not in release	Not in release	Not in release	—
ffmpeg	Not affected	Not affected	Not affected	Not affected

CVE-2025-1594

Medium priority

Some fixes available 7 of 8

A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1. This affects the function ff_aac_search_for_tns of the file libavcodec/aacenc_tns.c of the component AAC Encoder. The manipulation leads to...

2 affected packages

libav, ffmpeg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	Not in release	Not in release	Not in release	—
ffmpeg	Fixed	Fixed	Fixed	Fixed

CVE-2025-25473

Medium priority

Some fixes available 7 of 9

FFmpeg git master before commit c08d30 was discovered to contain a memory leak in the avformat_free_context function in libavutil/mem.c.

2 affected packages

libav, ffmpeg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	Not in release	Not in release	Not in release	—
ffmpeg	Fixed	Fixed	Fixed	Fixed

CVE-2025-25471

Medium priority

Needs evaluation

FFmpeg git master before commit fd1772 was discovered to contain a NULL pointer dereference via the component libavformat/mov.c.

2 affected packages

libav, ffmpeg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	Not in release	Not in release	Not in release	—
ffmpeg	Not affected	Not affected	Not affected	Not affected

CVE-2025-22920

Medium priority

Needs evaluation

A heap buffer overflow vulnerability in FFmpeg before commit 4bf784c allows attackers to trigger a memory corruption via supplying a crafted media file in avformat when processing tile grid group streams. This can lead to a Denial...

2 affected packages

libav, ffmpeg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	Not in release	Not in release	Not in release	—
ffmpeg	Not affected	Not affected	Not affected	Not affected

CVE-2025-22919

Medium priority

Some fixes available 6 of 7

A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows attackers to cause a Denial of Service (DoS) via opening a crafted AAC file.

2 affected packages

libav, ffmpeg

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
libav	Not in release	Not in release	Not in release	—
ffmpeg	Fixed	Fixed	Fixed	Fixed

Export to JSON

Results by page:

Search CVE reports