CRITICAL🇵🇱 Wersja polska

CVE-2024-35368

CVSS 9.8v3.1pub. 2024-11-29upd. 2025-11-03

FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame function within libavcodec/rkmppdec.c.

🤖 AI Analysis
How it works

The vulnerability (CWE-415) consists of double-freeing the same memory area in the rkmpp_retrieve_frame function handling video decoding by the RKMPP hardware decoder. This situation leads to heap corruption, which can be exploited by an attacker to take control of the program's execution flow. A crafted multimedia file or video stream processed through the vulnerable decoding path can trigger this error.

Impact

An attacker can trigger arbitrary code execution (RCE) in the context of the FFmpeg process, and as a result, achieve complete system takeover, data disclosure, or system destabilization.

Mitigation & patch

FFmpeg should be updated to a version containing the fix available in commit 4513300989502090c4fd6560544dce399a8cd53c in the vendor's repository. Debian distribution users should apply patches announced in the debian-lts-announce message from February 2025.

Who is affected

FFmpeg version n7.0

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Ffmpeg

    APP
    Ffmpeg
    7.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-35367CRITICAL9.1PL ✓ten sam produkt

FFmpeg: Out-of-bounds Read w dekoderze VP8 na architekturze PowerPC (AltiVec)

CVE-2024-35366CRITICAL9.1PL ✓ten sam produkt

FFmpeg: Integer Overflow w parse_options (sbgdec.c) — moduł libavformat

CVE-2024-31581CRITICAL9.8PL ✓ten sam produkt

FFmpeg: nieprawidłowa walidacja indeksu tablicy w dekodowaniu H.266

CVE-2024-22862CRITICAL9.8PL ✓ten sam produkt

Integer overflow w FFmpeg — RCE przez parser JPEG XL

CVE-2024-22860CRITICAL9.8PL ✓ten sam produkt

Integer overflow w FFmpeg — RCE przez dekoder animacji JPEG XL