CVE-2024-31585

FFmpeg version n5.1 to n6.1 was discovered to contain an Off-by-one Error vulnerability in libavfilter/avf_showspectrum.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input.

Database specific

{
    "cna_assigner": "mitre",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/31xxx/CVE-2024-31585.json"
}

References

Affected packages

Git / git.ffmpeg.org/ffmpeg.git

Affected ranges

Type

GIT

Repo

https://git.ffmpeg.org/ffmpeg.git

Events

Introduced

b189550137155a622f88df6e64e72c2cca660854

Fixed

083443d67cb159ce469e5d902346b8d0c2cd1c93

Database specific

{
    "cpe": "cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:*",
    "source": "CPE_RANGE",
    "extracted_events": [
        {
            "introduced": "5.1"
        },
        {
            "fixed": "7.0"
        }
    ]
}

Affected versions

n5.*

n5.1-dev

n5.2-dev

n6.*

n6.1-dev

n6.2-dev

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-31585.json"

Git / github.com/ffmpeg/ffmpeg

Affected ranges

Type

GIT

Repo

https://github.com/ffmpeg/ffmpeg

Events

Introduced

b189550137155a622f88df6e64e72c2cca660854

Fixed

083443d67cb159ce469e5d902346b8d0c2cd1c93

Fixed

3061bf668feffc7c1f0b244205167b3b86da8015

Fixed

81df787b53eb5c6433731f6eaaf7f2a94d8a8c80

Fixed

ab0fdaedd1e7224f7e84ea22fcbfaa4ca75a6c06

Database specific

{
    "cpe": "cpe:2.3:a:ffmpeg:ffmpeg:*:*:*:*:*:*:*:*",
    "source": [
        "CPE_RANGE",
        "REFERENCES"
    ],
    "extracted_events": [
        {
            "introduced": "5.1"
        },
        {
            "fixed": "7.0"
        }
    ]
}

Affected versions

n5.*

n5.1-dev

n5.2-dev

n6.*

n6.1

n6.1-dev

n6.2-dev

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-31585.json"