CVE-2024-22860 | FFmpeg up to 6.0 JPEG XL Animation Decoder jpegxl_anim_read_packet integer overflow

Inserito da Angelo Barbosa | Gen 27, 2024 | CVE

A vulnerability was found in FFmpeg up to 6.0. It has been classified as critical. This affects the function jpegxl_anim_read_packet of the component JPEG XL Animation Decoder. The manipulation leads to integer overflow.

This vulnerability is uniquely identified as CVE-2024-22860. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-22860 | FFmpeg up to 6.0 JPEG XL Animation Decoder jpegxl_anim_read_packet integer overflow

Post correlati

CVE-2024-28327 | Asus RT-N12+ B1 Setting cleartext storage

CVE-2023-49446 | JFinalCMS 5.0.0 /admin/nav/save cross-site request forgery

CVE-2024-10467 | Mozilla Firefox up to 131 memory corruption

CVE-2024-38734 | SpreadsheetConverter Import Spreadsheets from Microsoft Excel Plugin up to 10.1.4 on WordPress unrestricted upload