VulnerableCode Package Details - pkg:deb/debian/ffmpeg@7:4.3.8-0%2Bdeb11u3?distro=trixie

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-352p-mxyy-k3bu	FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c.	CVE-2025-22921
VCID-k14h-eek4-s3cv	A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows attackers to cause a Denial of Service (DoS) via opening a crafted AAC file.	CVE-2025-22919
VCID-u45n-rr9s-ffah	Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg allows Read Sensitive Constants Within an Executable. This vulnerability is associated with program files https://github.Com/FFmpeg/FFmpeg/blob/master/libavfilter/af_pan.C . This issue affects FFmpeg: 7.1. Issue was fixed: https://github.com/FFmpeg/FFmpeg/commit/b5b6391d64807578ab872dc58fb8aa621dcfc38a https://github.com/FFmpeg/FFmpeg/commit/b5b6391d64807578ab872dc58fb8aa621dcfc38a This issue was discovered by: Simcha Kosman	CVE-2025-0518

Vulnerability

Summary

Aliases

VCID-352p-mxyy-k3bu

FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c.

CVE-2025-22921

VCID-k14h-eek4-s3cv

A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows attackers to cause a Denial of Service (DoS) via opening a crafted AAC file.

CVE-2025-22919

VCID-u45n-rr9s-ffah

Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg allows Read Sensitive Constants Within an Executable. This vulnerability is associated with program files https://github.Com/FFmpeg/FFmpeg/blob/master/libavfilter/af_pan.C . This issue affects FFmpeg: 7.1. Issue was fixed: https://github.com/FFmpeg/FFmpeg/commit/b5b6391d64807578ab872dc58fb8aa621dcfc38a https://github.com/FFmpeg/FFmpeg/commit/b5b6391d64807578ab872dc58fb8aa621dcfc38a This issue was discovered by: Simcha Kosman

CVE-2025-0518

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T12:28:25.332404+00:00	Debian Importer	Fixing	VCID-u45n-rr9s-ffah	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:00:53.727150+00:00	Debian Importer	Fixing	VCID-k14h-eek4-s3cv	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:32:21.610004+00:00	Debian Importer	Fixing	VCID-u45n-rr9s-ffah	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T07:28:34.556842+00:00	Debian Importer	Fixing	VCID-k14h-eek4-s3cv	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:22:26.194980+00:00	Debian Importer	Fixing	VCID-352p-mxyy-k3bu	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:15:10.437637+00:00	Debian Importer	Fixing	VCID-u45n-rr9s-ffah	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-02T17:10:08.334246+00:00	Debian Importer	Fixing	VCID-k14h-eek4-s3cv	https://security-tracker.debian.org/tracker/data/json	38.1.0