CVE-2025-7700
- Source
- https://cve.org/CVERecord?id=CVE-2025-7700
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-7700.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-7700
- Downstream
- Related
- Published
- 2025-11-07T18:59:28.962Z
- Modified
- 2026-05-01T04:30:49.012004Z
- Severity
-
- 5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- Ffmpeg: null pointer dereference in ffmpeg als decoder (libavcodec/alsdec.c)
- Details
-
A flaw was found in FFmpeg’s ALS audio decoder, where it does not properly check for memory allocation failures. This can cause the application to crash when processing certain malformed audio files. While it does not lead to data theft or system control, it can be used to disrupt services and cause a denial of service.
- Database specific
{ "cna_assigner": "redhat", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/7xxx/CVE-2025-7700.json", "cwe_ids": [ "CWE-476" ] }- References
Affected packages
Git / github.com/ffmpeg/ffmpeg
Affected versions
Other
N
n0.*
n0.11-dev
n0.12-dev
n0.8
n1.*
n1.1-dev
n1.2-dev
n1.3-dev
n2.*
n2.0
n2.1-dev
n2.2-dev
n2.3-dev
n2.4-dev
n2.5-dev
n2.6-dev
n2.7-dev
n2.8-dev
n2.9-dev
n3.*
n3.1-dev
n3.2-dev
n3.3-dev
n3.4-dev
n3.5-dev
n4.*
n4.1-dev
n4.2-dev
n4.3-dev
n4.4-dev
n4.5-dev
n5.*
n5.1-dev
n5.2-dev
n6.*
n6.1-dev
n6.2-dev
n7.*
n7.1-dev
n7.2-dev