CVE-2025-63757

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions FFmpeg versions prior to 7:7.1.3-0+deb13u1 FFmpeg version 8.0

Description An integer overflow issue exists in the yuv2ya16 X c template function within the libswscale/output.c component. This could lead to a denial of service or potentially allow for the execution of arbitrary code when processing crafted files or streams.

Recommendations Upgrade FFmpeg to version 7:7.1.3-0+deb13u1 or later. For FFmpeg version 8.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

BDU:2026-03013

CVE-2025-63757

DSA-6073-1

DSA-6079-1

OPENSUSE-SU-2026:10053-1

OPENSUSE-SU-2026:20064-1

SUSE-SU-2026:0198-1

SUSE-SU-2026:0229-1

USN-7982-1

Affected Products

Debian

Ffmpeg

Linuxmint

Red Os

Ubuntu

CVE-2025-63757

Weakness Enumeration

Related Identifiers

Affected Products

References · 45