vulnerability
Ubuntu: USN-7538-1 (CVE-2025-25473): FFmpeg vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:N/I:N/A:C) | Feb 18, 2025 | May 22, 2025 | May 30, 2025 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:C)
Published
Feb 18, 2025
Added
May 22, 2025
Modified
May 30, 2025
Description
FFmpeg git master before commit c08d30 was discovered to contain a NULL pointer dereference via the component libavformat/mov.c.
Solution(s)
ubuntu-pro-upgrade-ffmpegubuntu-pro-upgrade-libavcodec-extra60ubuntu-pro-upgrade-libavcodec-extra61ubuntu-pro-upgrade-libavcodec60ubuntu-pro-upgrade-libavcodec61ubuntu-pro-upgrade-libavdevice60ubuntu-pro-upgrade-libavdevice61ubuntu-pro-upgrade-libavfilter-extra10ubuntu-pro-upgrade-libavfilter-extra9ubuntu-pro-upgrade-libavfilter10ubuntu-pro-upgrade-libavfilter9ubuntu-pro-upgrade-libavformat-extra60ubuntu-pro-upgrade-libavformat-extra61ubuntu-pro-upgrade-libavformat60ubuntu-pro-upgrade-libavformat61ubuntu-pro-upgrade-libavutil58ubuntu-pro-upgrade-libavutil59ubuntu-pro-upgrade-libpostproc57ubuntu-pro-upgrade-libpostproc58ubuntu-pro-upgrade-libswresample4ubuntu-pro-upgrade-libswresample5ubuntu-pro-upgrade-libswscale7ubuntu-pro-upgrade-libswscale8
References
- CVE-2025-25473
- https://attackerkb.com/topics/CVE-2025-25473
- UBUNTU-USN-7538-1
- URL-https://git.ffmpeg.org/gitweb/ffmpeg.git/blobdiff/4f3c9f2f03378a08692a26532bc3146414717f8c..c08d300481b8ebb846cd43a473988fdbc6793d1b:/libavformat/avformat.c
- URL-https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/c08d300481b8ebb846cd43a473988fdbc6793d1b
- URL-https://trac.ffmpeg.org/ticket/11419
- URL-https://ubuntu.com/security/notices/USN-7538-1
- URL-https://www.cve.org/CVERecord?id=CVE-2025-25473
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.