VDB

GCVE-110-MAGEIA-2025-85

GCVE-110-MAGEIA-2025-85
Advisory Published
Vulnetix · Advisory published March 2, 2025
A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows attackers to cause a Denial of Service (DoS) via opening a crafted AAC file. (CVE-2025-22919) A heap buffer overflow vulnerability in FFmpeg before commit 4bf784c allows attackers to trigger a memory corruption via supplying a crafted media file in avformat when processing tile grid group streams. This can lead to a Denial of Service (DoS). (CVE-2025-22920) FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c. (CVE-2025-22921) FFmpeg git master before commit c08d30 was discovered to contain a NULL pointer dereference via the component libavformat/mov.c. (CVE-2025-25473)

Affected Products

VendorProductVersionsPlatforms
Mageiaffmpeg0 (affected), 5.1.6-1.3.mga9.tainted (unaffected), 5.1.6-1.3.mga9 (unaffected), 0 (affected), 0 (affected), 5.1.6-1.3.mga9 (unaffected), 0 (affected), 5.1.6-1.3.mga9.tainted (unaffected)
Mageiaphpmyadmin0 (affected), 5.2.3-1.mga9 (unaffected)

Browse GCVE Records

73,393 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›