CVE-2023-51795

Name of the Vulnerable Software and Affected Versions: Ffmpeg version N113007-g8d24a28d06

Description: The issue is related to a Buffer Overflow vulnerability in the libavfilter/avf showspectrum.c component, specifically in the showspectrumpic request frame function. This vulnerability allows a local attacker to execute arbitrary code. The vulnerability is associated with a heap buffer overflow.

Recommendations: For Ffmpeg version N113007-g8d24a28d06, consider disabling the showspectrumpic request frame function in the libavfilter/avf showspectrum.c component as a temporary workaround until a patch is available. Restrict access to the vulnerable libavfilter module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.