Andreas Rheinhardt - Security Researcher - Exploit Intelligence Platform

CVE-2024-35365 WRITEUP HIGH WRITEUP

Ffmpeg - Double Free

FFmpeg version n6.1.1 has a double-free vulnerability in the fftools/ffmpeg_mux_init.c component of FFmpeg, specifically within the new_stream_audio function.

CVSS 8.8

View Code

CVE-2024-35367 WRITEUP CRITICAL WRITEUP

Ffmpeg - Out-of-Bounds Read

FFmpeg n6.1.1 has an Out-of-bounds Read via libavcodec/ppc/vp8dsp_altivec.c, static const vec_s8 h_subpel_filters_outer

CVSS 9.1

View Code

CVE-2024-35368 WRITEUP CRITICAL WRITEUP

Ffmpeg - Double Free

FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame function within libavcodec/rkmppdec.c.

CVSS 9.8

View Code

CVE-2024-36615 WRITEUP MEDIUM WRITEUP

FFmpeg n7.0 - Data Race

FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. This could lead to a data race if video encoding parameters were being exported, as the side data would be attached in the decoder thread while being read in the output thread.

CVSS 5.9

View Code

CVE-2024-36618 WRITEUP MEDIUM WRITEUP

FFmpeg n6.1.1 - Memory Corruption

FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library which allows for an integer overflow, potentially resulting in a denial-of-service (DoS) condition.

CVSS 6.2

View Code