CVE-2024-36615: Ffmpeg Premature Progress Report Race
Frame progress is reported before side data is fully exported, creating a data race condition where other threads may read incomplete or corrupted frame side data. Ensure `ff_progress_frame_report` is called only after all frame data, including side data, has been attached.
Provally CuratedPublic repositoryHighMedium confidenceVerifiedApache-2.0
Cβ
Cβgreprules fetch cve-2024-36615-ffmpeg-premature-progress-report-race --engine opengrepDescription
Frame progress is reported before side data is fully exported, creating a data race condition where other threads may read incomplete or corrupted frame side data. Ensure `ff_progress_frame_report` is called only after all frame data, including side data, has been attached.
Community feedback
0 signals from signed-in users.
- Useful
- 0
- False positive
- 0
- Metadata
- 0