CVE-2023-50009

HIGH

Ffmpeg < 7.0 - Heap Buffer Overflow

Title source: rule

Description

FFmpeg v.n6.1-3-g466799d4f5 allows a heap-based buffer overflow via the ff_gaussian_blur_8 function in libavfilter/edge_template.c:116:5 component.

References (11)

Scores

CVSS v3 8.0
EPSS 0.0002
EPSS Percentile 5.4%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H

Details

CWE
CWE-122
Status published
Products (4)
fedoraproject/fedora 38
fedoraproject/fedora 39
fedoraproject/fedora 40
ffmpeg/ffmpeg 6.1 - 7.0
Published Apr 19, 2024
Tracked Since Feb 18, 2026