UBUNTU-CVE-2025-25467

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2025-25467

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2025/UBUNTU-CVE-2025-25467.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2025-25467

Related

CVE-2025-25467

Published

2025-02-18T22:15:00Z

Modified

2025-04-23T15:04:44Z

Summary

[none]

Details

Insufficient tracking and releasing of allocated used memory in libx264 git master allows attackers to execute arbitrary code via creating a crafted AAC file.

References

Affected packages

Ubuntu:Pro:14.04:LTS / libav

Package

Name: libav
Purl: pkg:deb/ubuntu/libav@6:9.20-0ubuntu0.14.04.1+esm1?arch=source&distro=esm-infra-legacy/trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

6:0.*

6:0.8.7-1ubuntu2

6:9.*

6:9.10-1ubuntu1

6:9.10-1ubuntu2

6:9.10-1ubuntu5

6:9.10-1ubuntu6

6:9.10-1ubuntu7

6:9.11-2ubuntu1

6:9.11-2ubuntu2

6:9.13-0ubuntu0.14.04.1

6:9.14-0ubuntu0.14.04.1

6:9.16-0ubuntu0.14.04.1

6:9.18-0ubuntu0.14.04.1

6:9.20-0ubuntu0.14.04.1

6:9.20-0ubuntu0.14.04.1+esm1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:14.04:LTS / x264

Package

Name: x264
Purl: pkg:deb/ubuntu/x264@2:0.142.2389+git956c8d8-2?arch=source&distro=esm-infra-legacy/trusty

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:0.*

2:0.123.2189+git35cf912-1ubuntu1

2:0.123.2189+git35cf912-1ubuntu2

2:0.123.2189+git35cf912-1ubuntu3

2:0.123.2189+git35cf912-1ubuntu4

2:0.142.2389+git956c8d8-2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:16.04:LTS / ffmpeg

Package

Name: ffmpeg
Purl: pkg:deb/ubuntu/ffmpeg@7:2.8.17-0ubuntu0.1+esm9?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

7:2.*

7:2.7.2-1build1

7:2.8.1-1ubuntu1

7:2.8.2-1ubuntu1

7:2.8.3-1

7:2.8.4-1

7:2.8.4-1ubuntu1

7:2.8.4-1ubuntu2

7:2.8.4-1ubuntu3

7:2.8.4-1ubuntu4

7:2.8.6-1ubuntu1

7:2.8.6-1ubuntu2

7:2.8.8-0ubuntu0.16.04.1

7:2.8.10-0ubuntu0.16.04.1

7:2.8.11-0ubuntu0.16.04.1

7:2.8.14-0ubuntu0.16.04.1

7:2.8.15-0ubuntu0.16.04.1

7:2.8.15-0ubuntu0.16.04.1+esm1

7:2.8.17-0ubuntu0.1

7:2.8.17-0ubuntu0.1+esm1

7:2.8.17-0ubuntu0.1+esm2

7:2.8.17-0ubuntu0.1+esm3

7:2.8.17-0ubuntu0.1+esm4

7:2.8.17-0ubuntu0.1+esm5

7:2.8.17-0ubuntu0.1+esm6

7:2.8.17-0ubuntu0.1+esm7

7:2.8.17-0ubuntu0.1+esm8

7:2.8.17-0ubuntu0.1+esm9

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:16.04:LTS / x264

Package

Name: x264
Purl: pkg:deb/ubuntu/x264@2:0.148.2643+git5c65704-1?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:0.*

2:0.146.2555+git0c21480-1

2:0.148.2601+gita0cd7d3-3

2:0.148.2643+git5c65704-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / ffmpeg

Package

Name: ffmpeg
Purl: pkg:deb/ubuntu/ffmpeg@7:3.4.11-0ubuntu0.1+esm7?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

7:3.*

7:3.3.4-2

7:3.3.4-2build3

7:3.4-2ubuntu2

7:3.4-4

7:3.4-4build1

7:3.4.1-1

7:3.4.1-1build1

7:3.4.2-1

7:3.4.2-1build1

7:3.4.2-2

7:3.4.4-0ubuntu0.18.04.1

7:3.4.6-0ubuntu0.18.04.1

7:3.4.8-0ubuntu0.2

7:3.4.11-0ubuntu0.1

7:3.4.11-0ubuntu0.1+esm1

7:3.4.11-0ubuntu0.1+esm2

7:3.4.11-0ubuntu0.1+esm3

7:3.4.11-0ubuntu0.1+esm4

7:3.4.11-0ubuntu0.1+esm5

7:3.4.11-0ubuntu0.1+esm6

7:3.4.11-0ubuntu0.1+esm7

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / x264

Package

Name: x264
Purl: pkg:deb/ubuntu/x264@2:0.152.2854+gite9a5903-2?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:0.*

2:0.148.2795+gitaaa9aa8-1

2:0.152.2854+gite9a5903-2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / ffmpeg

Package

Name: ffmpeg
Purl: pkg:deb/ubuntu/ffmpeg@7:4.2.7-0ubuntu0.1?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

7:4.*

7:4.1.4-1build2

7:4.2.1-2

7:4.2.1-2ubuntu1

7:4.2.2-1build1

7:4.2.2-1ubuntu1

7:4.2.4-1ubuntu0.1

7:4.2.7-0ubuntu0.1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / x264

Package

Name: x264
Purl: pkg:deb/ubuntu/x264@2:0.155.2917+git0a84d98-2?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:0.*

2:0.155.2917+git0a84d98-2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / ffmpeg

Package

Name: ffmpeg
Purl: pkg:deb/ubuntu/ffmpeg@7:4.4.2-0ubuntu0.22.04.1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

7:4.*

7:4.4-6ubuntu5

7:4.4.1-2ubuntu1

7:4.4.1-3ubuntu1

7:4.4.1-3ubuntu2

7:4.4.1-3ubuntu3

7:4.4.1-3ubuntu5

7:4.4.2-0ubuntu0.22.04.1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / x264

Package

Name: x264
Purl: pkg:deb/ubuntu/x264@2:0.163.3060+git5db6aa6-2build1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:0.*

2:0.160.3011+gitcde9a93-2.1

2:0.160.3011+gitcde9a93-2.1build1

2:0.163.3060+git5db6aa6-2

2:0.163.3060+git5db6aa6-2build1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.10 / ffmpeg

Package

Name: ffmpeg
Purl: pkg:deb/ubuntu/ffmpeg@7:7.0.2-3ubuntu1?arch=source&distro=oracular

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

7:6.*

7:6.1.1-3ubuntu5

7:6.1.1-4ubuntu1

7:6.1.1-4ubuntu2

7:6.1.1-4ubuntu3

7:6.1.1-5ubuntu1

7:6.1.1-5ubuntu2

7:6.1.1-5ubuntu3

7:7.*

7:7.0.2-1ubuntu1

7:7.0.2-3ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.10 / x264

Package

Name: x264
Purl: pkg:deb/ubuntu/x264@2:0.164.3108+git31e19f9-2build1?arch=source&distro=oracular

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:0.*

2:0.164.3108+git31e19f9-1

2:0.164.3108+git31e19f9-2build1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / ffmpeg

Package

Name: ffmpeg
Purl: pkg:deb/ubuntu/ffmpeg@7:6.1.1-3ubuntu5?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

7:6.*

7:6.0-6ubuntu1

7:6.0-9ubuntu1

7:6.1-2ubuntu1

7:6.1-3ubuntu1

7:6.1-4ubuntu1

7:6.1-5ubuntu1

7:6.1.1-1ubuntu1

7:6.1.1-3ubuntu1

7:6.1.1-3ubuntu5

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / x264

Package

Name: x264
Purl: pkg:deb/ubuntu/x264@2:0.164.3108+git31e19f9-1?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:0.*

2:0.164.3095+gitbaee400-3build1

2:0.164.3108+git31e19f9-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:25.04 / ffmpeg

Package

Name: ffmpeg
Purl: pkg:deb/ubuntu/ffmpeg@7:7.1.1-1ubuntu1?arch=source&distro=plucky

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

7:7.*

7:7.0.2-3ubuntu1

7:7.1-3ubuntu1

7:7.1-3ubuntu2

7:7.1-3ubuntu3

7:7.1-4ubuntu1

7:7.1-4ubuntu2

7:7.1.1-1ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:25.04 / x264

Package

Name: x264
Purl: pkg:deb/ubuntu/x264@2:0.164.3108+git31e19f9-2build2?arch=source&distro=plucky

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2:0.*

2:0.164.3108+git31e19f9-2build1

2:0.164.3108+git31e19f9-2build2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}