Search
Search is not available in local development.
Run npx pagefind --site __site after building to enable it.
JLSEC-2026-649

JLSEC-2026-649

JLSEC Published
Modified
Affected Packages
FFMPEG_jll < 8.1.0+0
FFMPEG_nogpl_jll < 8.1.0+0
FFplay_jll < 8.1.2+0
Aliases / Upstream
CVE-2026-30997

An out-of-bounds read in the readglobalparam() function (libavcodec/av1dec.c) of FFmpeg v8.0.1 allows attackers to cause a Denial of Service (DoS) via a crafted input.

References