1222730 – (CVE-2023-49528) VUL-0: CVE-2023-49528: ffmpeg-6: buffer overflow vulnerability in the dialogue enhance audio filter

Bug 1222730 (CVE-2023-49528) - VUL-0: CVE-2023-49528: ffmpeg-6: buffer overflow vulnerability in the dialogue enhance audio filter

Summary: VUL-0: CVE-2023-49528: ffmpeg-6: buffer overflow vulnerability in the dialogu...

Status:	IN_PROGRESS

Alias:	CVE-2023-49528

Product:	openSUSE Distribution
Classification:	openSUSE
Component:	Security (show other bugs)
Version:	Leap 15.6
Hardware:	Other Other

Priority:	P3 - Medium Severity: Major (vote)
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/401578/
Whiteboard:	CVSSv3.1:SUSE:CVE-2023-49528:8.2:(AV:...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2024-04-12 13:04 UTC by SMASH SMASH
Modified:	2024-04-26 22:15 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description SMASH SMASH 2024-04-12 13:04:37 UTC

Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, allows a local attacker to execute arbitrary code and cause a denial of service (DoS) via the af_dialoguenhance.c:261:5 in the de_stereo component.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-49528
https://www.cve.org/CVERecord?id=CVE-2023-49528
https://trac.ffmpeg.org/ticket/10691

Comment 1 Camila Camargo de Matos 2024-04-12 13:05:37 UTC

Affected by this issue are the following:
- openSUSE:Factory/ffmpeg-5
- openSUSE:Factory/ffmpeg-6

Comment 2 Camila Camargo de Matos 2024-04-12 13:08:36 UTC

From the description in the upstream issue [0], it seems like the following commits could be related to a possible fix:
- https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/2d9ed648
- https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/4671fb7d
- https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/f1f97331

[0] https://trac.ffmpeg.org/ticket/10691

Comment 3 Camila Camargo de Matos 2024-04-12 13:10:53 UTC

The dialogue enhance audio filter functionality was introduced in version 5.1, meaning previous versions of ffmpeg are not affected by this issue (see https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/f05c5298).

Comment 4 OBSbugzilla Bot 2024-04-22 17:16:10 UTC

This is an autogenerated message for OBS integration:
This bug (1222730) was mentioned in
https://build.opensuse.org/request/show/1169718 Factory / ffmpeg-6
https://build.opensuse.org/request/show/1169719 Factory / ffmpeg-5