CVE-2025-1594

Name
CVE-2025-1594
Description
A vulnerability, which was classified as critical, was found in FFmpeg up to 7.1. This affects the function ff_aac_search_for_tns of the file libavcodec/aacenc_tns.c of the component AAC Encoder. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
product https://ffmpeg.org/
exploit https://trac.ffmpeg.org/attachment/ticket/11418/poc
issue-tracking https://trac.ffmpeg.org/ticket/11418#comment:3
signature https://vuldb.com/?ctiid.296589
vdb-entry https://vuldb.com/?id.296589
third-party-advisory https://vuldb.com/?submit.496929

Match rules

CPE URI Source package Min version Max version
ffmpeg == 3.4.0 == 3.4.0
ffmpeg == 3.4.1 == 3.4.1
ffmpeg == 3.4.2 == 3.4.2
ffmpeg == 3.4.3 == 3.4.3
ffmpeg == 3.4.4 == 3.4.4
ffmpeg == 3.4.5 == 3.4.5
ffmpeg == 3.4.6 == 3.4.6
ffmpeg == 3.4.7 == 3.4.7
ffmpeg == 3.4.8 == 3.4.8
ffmpeg == 3.4.9 == 3.4.9
ffmpeg == 3.4.10 == 3.4.10
ffmpeg == 3.4.11 == 3.4.11
ffmpeg == 3.4.12 == 3.4.12
ffmpeg == 3.4.13 == 3.4.13
ffmpeg == 4.2.0 == 4.2.0
ffmpeg == 4.2.1 == 4.2.1
ffmpeg == 4.2.2 == 4.2.2
ffmpeg == 4.2.3 == 4.2.3
ffmpeg == 4.2.4 == 4.2.4
ffmpeg == 4.2.5 == 4.2.5
ffmpeg == 4.2.6 == 4.2.6
ffmpeg == 4.2.7 == 4.2.7
ffmpeg == 4.2.8 == 4.2.8
ffmpeg == 4.2.9 == 4.2.9
ffmpeg == 4.2.10 == 4.2.10
ffmpeg == 4.3.0 == 4.3.0
ffmpeg == 4.3.1 == 4.3.1
ffmpeg == 4.3.2 == 4.3.2
ffmpeg == 4.3.3 == 4.3.3
ffmpeg == 4.3.4 == 4.3.4
ffmpeg == 4.3.5 == 4.3.5
ffmpeg == 4.3.6 == 4.3.6
ffmpeg == 4.3.7 == 4.3.7
ffmpeg == 4.3.8 == 4.3.8
ffmpeg == 4.4.0 == 4.4.0
ffmpeg == 4.4.1 == 4.4.1
ffmpeg == 4.4.2 == 4.4.2
ffmpeg == 4.4.3 == 4.4.3
ffmpeg == 4.4.4 == 4.4.4
ffmpeg == 4.4.5 == 4.4.5
ffmpeg == 5.1.0 == 5.1.0
ffmpeg == 5.1.1 == 5.1.1
ffmpeg == 5.1.2 == 5.1.2
ffmpeg == 5.1.3 == 5.1.3
ffmpeg == 5.1.4 == 5.1.4
ffmpeg == 5.1.5 == 5.1.5
ffmpeg == 5.1.6 == 5.1.6
ffmpeg == 6.1.0 == 6.1.0
ffmpeg == 6.1.1 == 6.1.1
ffmpeg == 6.1.2 == 6.1.2
ffmpeg == 7.0 == 7.0
ffmpeg == 7.0.0 == 7.0.0
ffmpeg == 7.0.1 == 7.0.1
ffmpeg == 7.0.2 == 7.0.2
ffmpeg == 7.1 == 7.1
cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:* ffmpeg >= None <= 7.1

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
ffmpeg edge-community 6.1.2-r0 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
ffmpeg edge-community 6.1.2-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
ffmpeg edge-community 6.1.2-r2 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
ffmpeg edge-community 6.1.2-r3 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
ffmpeg edge-community 6.1.2-r4 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
ffmpeg edge-community 6.1.2-r5 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
ffmpeg 3.22-community 6.1.2-r1 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
ffmpeg 3.22-community 6.1.2-r2 Natanael Copa <ncopa@alpinelinux.org> possibly vulnerable
ffmpeg edge-community 7.1.1-r0 Achill Gilgenast <achill@achill.org> fixed
ffmpeg edge-community 8.0-r0 Achill Gilgenast <achill@achill.org> fixed