CVE Vulnerabilities

CVE-2025-25473

NULL Pointer Dereference

Published: Feb 18, 2025 | Modified: Feb 20, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM

FFmpeg git master before commit c08d30 was discovered to contain a NULL pointer dereference via the component libavformat/mov.c.

Weakness

A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

Affected Software

Name Vendor Start Version End Version
Ffmpeg Ubuntu devel *
Ffmpeg Ubuntu esm-apps/bionic *
Ffmpeg Ubuntu esm-apps/focal *
Ffmpeg Ubuntu esm-apps/jammy *
Ffmpeg Ubuntu esm-apps/noble *
Ffmpeg Ubuntu esm-apps/xenial *
Ffmpeg Ubuntu focal *
Ffmpeg Ubuntu jammy *
Ffmpeg Ubuntu noble *
Ffmpeg Ubuntu oracular *
Ffmpeg Ubuntu plucky *
Ffmpeg Ubuntu upstream *

Potential Mitigations

References