DEBIAN-CVE-2023-49502

DEBIAN-CVE-2023-49502 PUBLISHED CVSS 8.800000190734863 HIGH

Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the ff_bwdif_filter_intra_c function in the libavfilter/bwdifdsp.c:125:5 component.

Risk Scores

CVSS v3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Debian:11	ffmpeg	4.3.5-0, 7:4.3.5-0+deb11u1, 7:4.3.7-0+deb11u1
Debian:12	ffmpeg	7:5.1.5-0+deb12u1, *, 7:5.1.6-0+deb12u1
Debian:13	ffmpeg	0, 0, 0
Debian:14	ffmpeg	0, 0, 0

Timeline

Apr 19, 2024 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2023-49502 advisory

Open in Interactive Console →