FFmpeg Integer Overflow Vulnerability in DXA Demuxer Allowing Denial-of-Service

A vulnerability allowing integer overflow has been identified in the DXA demuxer of FFmpeg version n6.1.1, within the libavformat library. This overflow could lead to a denial-of-service condition or cause other undefined behavior.

Impact

Exploitation of this vulnerability can cause a signed integer overflow, which may lead to a denial-of-service condition.

Remediation

Users can upgrade to FFmpeg version n6.1.2 or later, where this vulnerability has been addressed.