[SECURITY] [DSA 4249-1] ffmpeg security update

2018-07-17T20:42:20
ID DEBIAN:DSA-4249-1:09206
Type debian
Reporter Debian
Modified 2018-07-17T20:42:20

Description


Debian Security Advisory DSA-4249-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff July 17, 2018 https://www.debian.org/security/faq


Package : ffmpeg CVE ID : CVE-2018-6392 CVE-2018-6621 CVE-2018-7557 CVE-2018-10001 CVE-2018-12458 CVE-2018-13300 CVE-2018-13302

Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed.

For the stable distribution (stretch), these problems have been fixed in version 7:3.2.11-1~deb9u1.

We recommend that you upgrade your ffmpeg packages.

For the detailed security status of ffmpeg please refer to its security tracker page at: https://security-tracker.debian.org/tracker/ffmpeg

Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org