CVE-2024-55069

Name of the Vulnerable Software and Affected Versions ffmpeg version 7.1

Description The issue is related to a Null Pointer Dereference in the iamf read header function located in /libavformat/iamfdec.c. This is a general information about the problem, but specific details about the number of potentially affected devices or real-world incidents are not provided.

Recommendations For ffmpeg version 7.1, consider disabling the iamf read header function as a temporary workaround until a patch is available. Restrict access to the /libavformat/iamfdec.c module to minimize the risk of exploitation. Avoid using the affected function in sensitive operations until the issue is resolved.