Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:libav:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductLibav (6d4767d7-d6f3-57ae-a903-f8a4fa58b198)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-8586 vulnerable 2026-06-08 07:45:20.772474 libav MPEG File Parser utils.c ff_seek_frame_binary null pointer dereference
LOW (3.3)
A vulnerability, which was classified as problematic, was found in libav up to 12.3. This affects the function ff_seek_frame_binary of the file /libavformat/utils.c of the component MPEG File Parser. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The bug was initially reported by the researcher to the wrong project. This vulnerability only affects products that are no longer supported by the maintainer.
Published: 2025-08-05T17:32:05.219Z
Updated: 2025-08-06T15:10:03.799Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-8585 vulnerable 2026-06-08 07:45:20.772058 libav DSS File Demuxer avconv.c main double free
MEDIUM (5.3)
A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The bug was initially reported by the researcher to the wrong project. This vulnerability only affects products that are no longer supported by the maintainer.
Published: 2025-08-05T17:02:06.134Z
Updated: 2025-08-06T15:09:05.365Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2025-8584 vulnerable 2026-06-08 07:45:20.770465 libav AVI File Parser buffer.c av_buffer_unref null pointer dereference
LOW (3.3)
A vulnerability classified as problematic was found in libav up to 12.3. Affected by this vulnerability is the function av_buffer_unref of the file libavutil/buffer.c of the component AVI File Parser. The manipulation leads to null pointer dereference. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The bug was initially reported by the researcher to the wrong project. This vulnerability only affects products that are no longer supported by the maintainer.
Published: 2025-08-05T16:32:06.484Z
Updated: 2025-08-05T17:53:41.456Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.