CVE-2023-50007: Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via theav_samples_set_silence function in thelibavutil/samplefmt.c:260:9 component. https://github.com/FFmpeg/FFmpeg/commit/b1942734c7cbcdc9034034373abcc9ecb9644c47 https://trac.ffmpeg.org/ticket/10700 --- CVE-2023-50008: Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the av_malloc function in libavutil/mem.c:105:9 component. https://github.com/FFmpeg/FFmpeg/commit/5f87a68cf70dafeab2fb89b42e41a4c29053b89b https://trac.ffmpeg.org/ticket/10701 --- CVE-2023-50009: Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the ff_gaussian_blur_8 function in libavfilter/edge_template.c:116:5 component. https://ffmpeg.org/ https://github.com/FFmpeg/FFmpeg https://trac.ffmpeg.org/ticket/10699 --- CVE-2023-50010: Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the set_encoder_id function in /fftools/ffmpeg_enc.c component. https://ffmpeg.org/ https://trac.ffmpeg.org/ticket/10702
Created chromium tracking bugs for this issue: Affects: epel-all [bug 2276130] Created ffmpeg tracking bugs for this issue: Affects: fedora-all [bug 2276129] Created qt5-qtwebengine tracking bugs for this issue: Affects: epel-all [bug 2276131] Affects: fedora-all [bug 2276132] Created qt6-qtwebengine tracking bugs for this issue: Affects: fedora-all [bug 2276133]