Integer overflow vulnerability in FFmpeg before n6.1, allows attackers to cause a denial of service (DoS) via the avcodec/osq module. https://github.com/FFmpeg/FFmpeg/commit/87b8c1081959e45ffdcbabb3d53ac9882ef2b5ce
Created chromium tracking bugs for this issue: Affects: epel-all [bug 2260707] Created ffmpeg tracking bugs for this issue: Affects: fedora-all [bug 2260704] Created qt5-qtwebengine tracking bugs for this issue: Affects: epel-all [bug 2260708] Affects: fedora-all [bug 2260705] Created qt6-qtwebengine tracking bugs for this issue: Affects: fedora-all [bug 2260706]
Code is present in 6.1+ only[1] and the fix is included in 6.1.1. [1] https://github.com/FFmpeg/FFmpeg/commit/7ef9d31071021c05e6b792af3f25b7b9ceaa9258