JLSEC-2025-119

See a problem?
Please try reporting it to the source first.
Source
https://github.com/JuliaLang/SecurityAdvisories.jl/blob/main/advisories/published/2025/JLSEC-2025-119.md
Import Source
https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2025/JLSEC-2025-119.json
JSON Data
https://api.test.osv.dev/v1/vulns/JLSEC-2025-119
Upstream
Published
2025-10-19T19:08:53.760Z
Modified
2025-11-03T00:19:07.865822Z
Summary
An integer overflow vulnerability was found in FFmpeg versions before 4.4.2 and before 5.0.1 in g729...
Details

An integer overflow vulnerability was found in FFmpeg versions before 4.4.2 and before 5.0.1 in g729parse() in llibavcodec/g729parser.c when processing a specially crafted file.

Database specific 
{
    "sources": [
        {
            "published": "2022-05-02T19:15:08.977Z",
            "url": "https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2022-1475",
            "modified": "2024-11-21T06:40:47.853Z",
            "imported": "2025-10-18T14:07:17.177Z",
            "id": "CVE-2022-1475",
            "html_url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1475"
        }
    ],
    "license": "CC-BY-4.0"
}
References

Affected packages

Julia / FFMPEG_jll

Package

Name
FFMPEG_jll
Purl
pkg:julia/FFMPEG_jll?uuid=b22a6f82-2f65-5046-a5b2-351ab43fb4e5

Affected ranges

Type
SEMVER
Events
Introduced
4.3.1+0
Fixed
4.4.2+0

Julia / FFplay_jll

Package

Name
FFplay_jll
Purl
pkg:julia/FFplay_jll?uuid=c4dce911-e170-5107-8314-c7bdc6785395

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.4.4+0