{"id":"CVE-2024-36613","details":"FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavformat library allowing for an integer overflow, potentially resulting in a denial-of-service (DoS) condition or other undefined behavior.","modified":"2026-05-17T04:03:54.443583069Z","published":"2025-01-03T00:00:00Z","related":["SUSE-SU-2025:0862-1","SUSE-SU-2025:1128-1","SUSE-SU-2025:1450-1","openSUSE-SU-2025:14833-1","openSUSE-SU-2025:14834-1","openSUSE-SU-2025:15012-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/36xxx/CVE-2024-36613.json","cna_assigner":"mitre"},"references":[{"type":"WEB","url":"https://gist.github.com/1047524396/0f4d90ef87553f772f888223085ac806"},{"type":"WEB","url":"https://github.com/FFmpeg/FFmpeg/blob/n6.1.1/libavformat/dxa.c#L125"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/36xxx/CVE-2024-36613.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-36613"},{"type":"FIX","url":"https://github.com/ffmpeg/ffmpeg/commit/50d8e4f27398fd5778485a827d7a2817921f8540"}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}