CVE-2025-59730
MEDIUMFFmpeg >=829680f96a7a7ff02d1543895ec0fb713309d5c0 <8.0 - Heap-Based Buffer Overflow in SANM Frame Decoding
Title source: llmDescription
When decoding a frame for a SANM file (ANIM v0 variant), the decoded data can be larger than the buffer allocated for it. Frames encoded with codec 48 can specify their resolution (width x height). A buffer of appropriate size is allocated depending on the resolution. This codec can encode the frame contents using a run-length encoding algorithm. There are no checks that the decoded frame fits in the allocated buffer, leading to a heap-buffer-overflow. process_frame_obj initializes the buffers based on the frame resolution: We recommend upgrading to version 8.0 or beyond.
References (1)
Core 1
Core References
Various Sources
https://issuetracker.google.com/434637586
Scores
CVSS v4
5.7
EPSS
0.0002
EPSS Percentile
5.5%
CVSS:4.0/AV:A/AC:H/AT:P/PR:L/UI:P/VC:L/VI:H/VA:N/SC:L/SI:H/SA:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-787
Status
published
Products (1)
FFmpeg/FFmpeg
829680f96a7a7ff02d1543895ec0fb713309d5c0 - 8.0
Published
Oct 06, 2025
Tracked Since
Feb 18, 2026