VDB-273539 | FFmpeg 402d98c9d467dff6931d906ebb732b9a00334e0b jpegxl_anim_dec.c jpegxl_collect_codestream_header use after free

Posted by Angelo Barbosa | Aug 3, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in FFmpeg 402d98c9d467dff6931d906ebb732b9a00334e0b. This issue affects the function jpegxl_collect_codestream_header of the file FFmpeg/libavformat/jpegxl_anim_dec.c. The manipulation leads to use after free.

The attack may be initiated remotely. Furthermore, there is an exploit available.

Affects random checkout which is not eligible for a CVE assignment according to MITRE definitions.

VDB-273539 | FFmpeg 402d98c9d467dff6931d906ebb732b9a00334e0b jpegxl_anim_dec.c jpegxl_collect_codestream_header use after free

Related Posts

CVE-2024-30309 | Adobe Substance 3D Painter up to 9.1.2 out-of-bounds (apsb24-31)

CVE-2023-47212 | stb_vorbis 1.22 comment integer overflow (TALOS-2023-1846)

CVE-2024-48999 | Microsoft

CVE-2024-23747 | Moderna Sistemas ModernaNet Hospital Management System 2024 Laudo id resource injection