Unrated severityNVD Advisory· Published Apr 19, 2024· Updated Nov 4, 2025

CVE-2023-49501

Description

Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the config_eq_output function in the libavfilter/asrc_afirsrc.c:495:30 component.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

FFmpeg/Ffmpegcpe-rescue2 versions
(expand)+ 1 more
- (no CPE)
- (no CPE)range: = v.n6.1-3-g466799d4f5
osv-coords
pkg:rpm/opensuse/ffmpeg-6&distro=openSUSE%20Tumbleweed
Range: < 6.1.1-4.1

Patches

Vulnerability mechanics

References

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/mitrevendor-advisory
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT/mitrevendor-advisory
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY/mitrevendor-advisory
trac.ffmpeg.org/ticket/10686mitre
trac.ffmpeg.org/ticket/10686mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000