CVE-2024-22860

Published January 27th, 2024

View on NVD ↗

CVSS v3

9.8

CRITICAL

CVSS v2

N/A

Affected

PROJECT

Description

Integer overflow vulnerability in FFmpeg before n6.1, allows remote attackers to execute arbitrary code via the jpegxl_anim_read_packet component in the JPEG XL Animation decoder.

FFmpeg/FFmpeg

Mirror of https://git.ffmpeg.org/ffmpeg.git

GitHub

61.4K