VDB

DEBIAN-CVE-2023-6604

DEBIAN-CVE-2023-6604 PUBLISHED CVSS 5.300000190734863 MEDIUM

A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation.

Risk Scores

CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected Products

VendorProductVersions
Debian:13ffmpeg0, 0, 0
Debian:12ffmpeg7:5.1.4-0+deb12u1, 7:5.1.6-0+deb12u1, *
Debian:14ffmpeg0, 0, 0
Debian:11ffmpeg7:4.3.3-0+deb11u1, 7:4.3.4-0+deb11u1, 7:4.3.5-0+deb11u1

Timeline

  • Jan 6, 2025 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›