CNNVD-202508-355 Information

CNNVD ID

CNNVD-202508-355

Related CVE

CVE-2025-8585

• CNNVD Published: 2025-08-05

Description (Chinese)

Libav是Libav团队的一套跨平台的可对音频和视频进行录制、转换的解决方案，它包含了一个libavcodec编码器。 libav 12.3及之前版本存在资源管理错误漏洞，该漏洞源于组件DSS File Demuxer中文件/avtools/avconv.c的函数main存在双重释放。

Description (English)

Libav is a cross-platform solution for recording and converting audio and video that includes a libavcodec encoder. Libav 12.3 and previous versions had a resource management error loophole, resulting from the dual release of the function main in component DSS File Demuxer/avtools/avconv.c.

Hazard Level

High

Vulnerability Type

资源管理错误

Affected Vendor

Libav

Published

2025-08-05

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.318818 https://vuldb.com/?submit.621825 https://trac.ffmpeg.org/ticket/11680 https://drive.google.com/file/d/1I4VVXGys156UdeSTgya_GGxLZxwuxUPw/view?usp=sharing https://vuldb.com/?id.318818 https://access.redhat.com/security/cve/cve-2025-8585

Patch

https://trac.ffmpeg.org/ticket/11680