CVE-2023-51797

Name of the Vulnerable Software and Affected Versions: FFmpeg version N113007-g8d24a28d06

Description: The issue is related to incorrect code generation management in the showwaves filter frame component of the FFmpeg multimedia library. Exploitation of this issue may allow an attacker to execute arbitrary code. A buffer overflow vulnerability in FFmpeg allows a local attacker to execute arbitrary code via the libavfilter/avf showwaves.c file, specifically in the showwaves filter frame function at line 722.

Recommendations: For FFmpeg version N113007-g8d24a28d06, consider disabling the showwaves filter frame function in the libavfilter/avf showwaves.c file as a temporary workaround until a patch is available. Restrict access to the libavfilter module to minimize the risk of exploitation. Avoid using the showwaves filter frame function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.