Vulnerability - CVE-2024-32230

Name

CVE-2024-32230

Source

NVD ( link)Debian ( link)

Description

FFmpeg 7.0 is vulnerable to Buffer Overflow. There is a negative-size-param bug at libavcodec/mpegvideo_enc.c:1216:21 in load_input_picture in FFmpeg7.0

CWEs

CWE-120 CWE-120

Published Date

Jul 1, 2024

Updated Date

Jun 17, 2026

Workaround

Advisories

https://trac.ffmpeg.org/ticket/10952Exploit

Analysis#

Affected Component

Analysis

ffmpeg

Patched

Vulnerability Ratings#

7.8

CVSSv31

7.8

CVSSv31

NaN

other

Others affected components#

Name

Project

Project Version

Version

Status

ffmpeg

buildroot

2025.02.x

6.1.5

Not Affected

ffmpeg

buildroot

master

6.1.5

Not Affected

ffmpeg

openwrt

master

6.1.4-r2

Not Affected

ffmpeg

openwrt

openwrt-25.12

6.1.4-r1

Not Affected

ffmpeg

yocto

master

8.1.1

Not Affected

ffmpeg

yocto

scarthgap

6.1.4

Not Affected

Resolved with patches#

ffmpeg (yocto:kirkstone)

Title

Author

Resolve

avcodec/mpegvideo_enc: Fix 1 line and one column images

Michael Niedermayer <michael@niedermayer.cc>

CVE-2024-32230