vulnerability

Ubuntu: USN-7982-1 (CVE-2025-63757): FFmpeg vulnerabilities

Try Surface Command
Back to search
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Dec 18, 2025
Added
Jan 29, 2026
Modified
Feb 2, 2026

Description

It was discovered that FFmpeg did not correctly handle certain memory
operations. An attacker could possibly use this issue to cause a denial
of service or execute arbitrary code. This issue only affected
Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS and Ubuntu 25.10.
(CVE-2025-59728)

It was discovered that FFmpeg did not correctly handle certain memory
operations. An attacker could possibly use this issue to cause a denial
of service or execute arbitrary code. This issue only affected
Ubuntu 22.04 LTS, Ubuntu 24.04 LTS and Ubuntu 25.10. (CVE-2025-59731,
CVE-2025-59732)

It was discovered that FFmpeg did not correctly handle certain memory
operations. An attacker could possibly use this issue to cause a denial
of service or execute arbitrary code. This issue only affected
Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS
and Ubuntu 25.10. (CVE-2025-59733)

It was discovered that FFmpeg did not correctly handle certain integer
arithmetic operations. An attacker could possibly use this issue to
cause a denial of service or execute arbitrary code. (CVE-2025-63757)

Solutions

ubuntu-pro-upgrade-ffmpegubuntu-pro-upgrade-libavcodec-extraubuntu-pro-upgrade-libavcodec-ffmpeg56ubuntu-pro-upgrade-libavcodec57ubuntu-pro-upgrade-libavcodec58ubuntu-pro-upgrade-libavcodec60ubuntu-pro-upgrade-libavcodec61ubuntu-pro-upgrade-libavformat-ffmpeg56ubuntu-pro-upgrade-libavformat57ubuntu-pro-upgrade-libavformat58ubuntu-pro-upgrade-libavformat60ubuntu-pro-upgrade-libavformat61

References

    Title
    NEW

    Explore Exposure Command

    Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

    Try it today