{"url":"http://public2.vulnerablecode.io/api/packages/264923?format=json","purl":"pkg:apk/alpine/ffmpeg@6.1-r0?arch=riscv64&distroversion=v3.24&reponame=community","type":"apk","namespace":"alpine","name":"ffmpeg","version":"6.1-r0","qualifiers":{"arch":"riscv64","distroversion":"v3.24","reponame":"community"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"7.1.1-r0","latest_non_vulnerable_version":"8.0-r0","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/212744?format=json","vulnerability_id":"VCID-x2cc-x5qk-cbff","summary":"FFmpeg prior to commit bf814 was discovered to contain an out of bounds read via the dist->alphabet_size variable in the read_vlc_prefix() function.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2023-46407","reference_id":"","reference_type":"","scores":[{"value":"0.00026","scoring_system":"epss","scoring_elements":"0.07968","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2023-46407"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/264923?format=json","purl":"pkg:apk/alpine/ffmpeg@6.1-r0?arch=riscv64&distroversion=v3.24&reponame=community","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ffmpeg@6.1-r0%3Farch=riscv64&distroversion=v3.24&reponame=community"}],"aliases":["CVE-2023-46407"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-x2cc-x5qk-cbff"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ffmpeg@6.1-r0%3Farch=riscv64&distroversion=v3.24&reponame=community"}