Unrated severityNVD Advisory· Published Apr 17, 2024· Updated Nov 4, 2025
CVE-2024-31578
CVE-2024-31578
Description
FFmpeg version n6.1.1 was discovered to contain a heap use-after-free via the av_hwframe_ctx_init function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
44- osv-coords42 versionspkg:apk/chainguard/ffmpeg-6pkg:apk/chainguard/ffmpeg-6-devpkg:apk/chainguard/ffmpeg-6-docpkg:apk/chainguard/ffmpeg-6-libavcodec61pkg:apk/chainguard/ffmpeg-6-libavdevice61pkg:apk/chainguard/ffmpeg-6-libavfilter10pkg:apk/chainguard/ffmpeg-6-libavformat61pkg:apk/chainguard/ffmpeg-6-libavutil59pkg:apk/chainguard/ffmpeg-6-libpostproc58pkg:apk/chainguard/ffmpeg-6-libswresample5pkg:apk/chainguard/ffmpeg-6-libswscale8pkg:apk/chainguard/ffmpeg-6-qt-faststartpkg:apk/chainguard/ffmpeg-6-staticpkg:rpm/opensuse/ffmpeg-4&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/ffmpeg-4&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/ffmpeg-4&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/ffmpeg-5&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/ffmpeg-6&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/ffmpeg-7&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/ffmpeg&distro=openSUSE%20Leap%2015.5pkg:rpm/suse/ffmpeg-4&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/ffmpeg-4&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/ffmpeg-4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5pkg:rpm/suse/ffmpeg-4&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6pkg:rpm/suse/ffmpeg-4&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/ffmpeg-4&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/ffmpeg-4&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP5pkg:rpm/suse/ffmpeg-4&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP6pkg:rpm/suse/ffmpeg&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP5
< 0+ 41 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 4.4-150400.3.24.1
- (no CPE)range: < 4.4.5-150600.13.16.1
- (no CPE)range: < 4.4.4-7.1
- (no CPE)range: < 5.1.4-5.1
- (no CPE)range: < 6.1.1-4.1
- (no CPE)range: < 7.1.1-1.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 4.4-150400.3.24.1
- (no CPE)range: < 4.4-150400.3.24.1
- (no CPE)range: < 4.4-150400.3.24.1
- (no CPE)range: < 4.4.5-150600.13.16.1
- (no CPE)range: < 4.4-150400.3.24.1
- (no CPE)range: < 4.4-150400.3.24.1
- (no CPE)range: < 4.4-150400.3.24.1
- (no CPE)range: < 4.4.5-150600.13.16.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
- (no CPE)range: < 3.4.2-150200.11.41.1
Patches
Vulnerability mechanics
References
5- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6G7EYH2JAK5OJPVNC6AXYQ5K7YGYNCDN/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IPETICRXUOGRIM4U3BCRTIKE3IZWCSBT/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LE3ASLH6QF2E5OVJI5VA3JSEPJFFFMNY/mitrevendor-advisory
- gist.github.com/1047524396/45400cce5859d78dcd3a62010df8d179mitre
- github.com/ffmpeg/ffmpeg/commit/3bb00c0a420c3ce83c6fafee30270d69622ccad7mitre
News mentions
0No linked articles in our index yet.