Bugs fixes in "ffmpeg"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2025-63757 | Integer overflow vulnerability in the yuv2ya16_X_c_template function in libswscale/output.c in FFmpeg 8.0. | 2026-01-28 |
| CVE | CVE-2025-59733 | When decoding an OpenEXR file that uses DWAA or DWAB compression, there's an implicit assumption that all image channels have the same pixel type (an | 2026-01-28 |
| CVE | CVE-2025-59732 | When decoding an OpenEXR file that uses DWAA or DWAB compression, there's an implicit assumption that the height and width are divisible by 8. If th | 2026-01-28 |
| CVE | CVE-2025-59731 | When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to | 2026-01-28 |
| CVE | CVE-2025-59728 | When calculating the content path in handling of MPEG-DASH manifests, there's an out-of-bounds NUL-byte write one byte past the end of the buffer.Whe | 2026-01-28 |
| CVE | CVE-2025-63757 | Integer overflow vulnerability in the yuv2ya16_X_c_template function in libswscale/output.c in FFmpeg 8.0. | 2026-01-28 |
| CVE | CVE-2025-59733 | When decoding an OpenEXR file that uses DWAA or DWAB compression, there's an implicit assumption that all image channels have the same pixel type (an | 2026-01-28 |
| CVE | CVE-2025-59732 | When decoding an OpenEXR file that uses DWAA or DWAB compression, there's an implicit assumption that the height and width are divisible by 8. If th | 2026-01-28 |
| CVE | CVE-2025-59731 | When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to | 2026-01-28 |
| CVE | CVE-2025-59728 | When calculating the content path in handling of MPEG-DASH manifests, there's an out-of-bounds NUL-byte write one byte past the end of the buffer.Whe | 2026-01-28 |
| CVE | CVE-2025-7700 | A flaw was found in FFmpeg’s ALS audio decoder, where it does not properly check for memory allocation failures. This can cause the application to cr | 2025-11-17 |
| CVE | CVE-2025-7700 | A flaw was found in FFmpeg’s ALS audio decoder, where it does not properly check for memory allocation failures. This can cause the application to cr | 2025-11-17 |
| CVE | CVE-2025-7700 | A flaw was found in FFmpeg’s ALS audio decoder, where it does not properly check for memory allocation failures. This can cause the application to cr | 2025-11-17 |
| CVE | CVE-2025-7700 | A flaw was found in FFmpeg’s ALS audio decoder, where it does not properly check for memory allocation failures. This can cause the application to cr | 2025-11-17 |
| CVE | CVE-2025-1594 | A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1. This affects the function ff_aac_search_for_tns of the file libavco | 2025-09-04 |
| CVE | CVE-2025-1594 | A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1. This affects the function ff_aac_search_for_tns of the file libavco | 2025-09-04 |
| CVE | CVE-2025-25473 | FFmpeg git master before commit c08d30 was discovered to contain a NULL pointer dereference via the component libavformat/mov.c. | 2025-05-28 |
| CVE | CVE-2025-22921 | FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c. | 2025-05-28 |
| CVE | CVE-2025-25473 | FFmpeg git master before commit c08d30 was discovered to contain a NULL pointer dereference via the component libavformat/mov.c. | 2025-05-28 |
| CVE | CVE-2025-22921 | FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c. | 2025-05-28 |
About
-
Send Feedback to @ubuntu_updates
