vulnerability
Ubuntu: USN-7538-1 (CVE-2025-25473): FFmpeg vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:P/A:N) | Feb 18, 2025 | May 22, 2025 | Aug 18, 2025 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:P/A:N)
Published
Feb 18, 2025
Added
May 22, 2025
Modified
Aug 18, 2025
Description
FFmpeg git master before commit c08d30 was discovered to contain a NULL pointer dereference via the component libavformat/mov.c.
Solutions
ubuntu-pro-upgrade-ffmpegubuntu-pro-upgrade-libavcodec-extra60ubuntu-pro-upgrade-libavcodec-extra61ubuntu-pro-upgrade-libavcodec60ubuntu-pro-upgrade-libavcodec61ubuntu-pro-upgrade-libavdevice60ubuntu-pro-upgrade-libavdevice61ubuntu-pro-upgrade-libavfilter-extra10ubuntu-pro-upgrade-libavfilter-extra9ubuntu-pro-upgrade-libavfilter10ubuntu-pro-upgrade-libavfilter9ubuntu-pro-upgrade-libavformat-extra60ubuntu-pro-upgrade-libavformat-extra61ubuntu-pro-upgrade-libavformat60ubuntu-pro-upgrade-libavformat61ubuntu-pro-upgrade-libavutil58ubuntu-pro-upgrade-libavutil59ubuntu-pro-upgrade-libpostproc57ubuntu-pro-upgrade-libpostproc58ubuntu-pro-upgrade-libswresample4ubuntu-pro-upgrade-libswresample5ubuntu-pro-upgrade-libswscale7ubuntu-pro-upgrade-libswscale8
References
- CVE-2025-25473
- https://attackerkb.com/topics/CVE-2025-25473
- CWE-476
- UBUNTU-USN-7538-1
- URL-https://git.ffmpeg.org/gitweb/ffmpeg.git/blobdiff/4f3c9f2f03378a08692a26532bc3146414717f8c..c08d300481b8ebb846cd43a473988fdbc6793d1b:/libavformat/avformat.c
- URL-https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/c08d300481b8ebb846cd43a473988fdbc6793d1b
- URL-https://trac.ffmpeg.org/ticket/11419
- URL-https://ubuntu.com/security/notices/USN-7538-1
- URL-https://www.cve.org/CVERecord?id=CVE-2025-25473
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.