Potential Security Vulnerability in FFmpeg version n6.1.1
CVE-2024-35369

Currently unrated

Key Information:

Vendor: FFmpeg
Status: Ffmpeg
Vendor: CVE Published:; 29 November 2024

What is CVE-2024-35369?

In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, a potential security vulnerability exists due to insufficient validation of certain parameters when parsing Speex codec extradata. This vulnerability could lead to integer overflow conditions, potentially resulting in undefined behavior or crashes during the decoding process.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://github.com/ffmpeg/ffmpeg/commit/0895ef0d6d6406ee6...

https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavcodec/s...

https://gist.github.com/1047524396/455093807666f2e351d674...

Timeline

Vulnerability published
Nov 29, 2024
Vulnerability Reserved
May 17, 2024

JSON

FFmpeg

What is CVE-2024-35369?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.