CVE-2023-51791
Buffer Overflow vulenrability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavcodec/jpegxl_parser.c in gen_alias_map.
| Software | From | Fixed in |
|---|---|---|
| ffmpeg / ffmpeg | 7.0 | 7.0.x |
| ffmpeg / ffmpeg | 7.0.1 | 7.0.1.x |
| ffmpeg / ffmpeg | 7.0.2 | 7.0.2.x |
| ffmpeg / ffmpeg | 7.0.3 | 7.0.3.x |
| ffmpeg / ffmpeg | 7.1 | 7.1.x |
| ffmpeg / ffmpeg | 7.1-dev | 7.1-dev.x |
| ffmpeg / ffmpeg | 7.1.1 | 7.1.1.x |
| ffmpeg / ffmpeg | 7.1.2 | 7.1.2.x |
| ffmpeg / ffmpeg | 7.1.3 | 7.1.3.x |
| ffmpeg / ffmpeg | 7.2-dev | 7.2-dev.x |
| ffmpeg / ffmpeg | 8.0 | 8.0.x |
| ffmpeg / ffmpeg | 8.0.1 | 8.0.1.x |
| ffmpeg / ffmpeg | 8.1-dev | 8.1-dev.x |
| fedoraproject / fedora | 38 | 38.x |
| fedoraproject / fedora | 39 | 39.x |
| fedoraproject / fedora | 40 | 40.x |
- https://ffmpeg.org/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY/
- https://trac.ffmpeg.org/ticket/10738
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime