Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2024 Canonical, Inc. / NASL script (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-6803-1.NASL
HistoryMay 30, 2024 - 12:00 a.m.

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 / 24.04 LTS : FFmpeg vulnerabilities (USN-6803-1)

2024-05-3000:00:00
Ubuntu Security Notice (C) 2024 Canonical, Inc. / NASL script (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
3
ubuntu 16.04 lts
ubuntu 18.04 lts
ubuntu 20.04 lts
ubuntu 22.04 lts
ubuntu 23.10
ubuntu 24.04 lts
ffmpeg
vulnerabilities
usn-6803-1
denial of service
arbitrary code execution
cve-2023-49501
cve-2023-49502
cve-2023-49528
cve-2023-50007
cve-2023-50008
cve-2023-50009
cve-2023-50010
cve-2023-51793
cve-2023-51794
cve-2023-51795
cve-2023-51796
cve-2023-51798
cve-2024-31578

8.3 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.5%

JSON

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6803-1 advisory.

Zeng Yunxiang and Song Jiaxuan discovered that FFmpeg incorrectly handled certain input files. An attacker     could possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential     arbitrary code execution. This issue only affected Ubuntu 24.04 LTS. (CVE-2023-49501)

Zeng Yunxiang and Song Jiaxuan discovered that FFmpeg incorrectly handled certain input files. An attacker     could possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential     arbitrary code execution. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS,     Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2023-49502)

Zhang Ling and Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input files. An attacker     could possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential     arbitrary code execution. This issue only affected Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2023-49528)

Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input files. An attacker could possibly     use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary code     execution. This issue only affected Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2023-50007)

Zeng Yunxiang and Song Jiaxuan discovered that FFmpeg incorrectly handled certain input files. An attacker     could possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential     arbitrary code execution. This issue only affected Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2023-50008)

Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input files. An attacker could possibly     use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary code     execution. This issue only affected Ubuntu 23.10. (CVE-2023-50009)

Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input files. An attacker could possibly     use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary code     execution. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS     and Ubuntu 23.10. (CVE-2023-50010)

Zeng Yunxiang and Li Zeyuan discovered that FFmpeg incorrectly handled certain input files. An attacker     could possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential     arbitrary code execution. This issue only affected Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2023-51793)

Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input files. An attacker could possibly     use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary code     execution. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS and Ubuntu 23.10.
(CVE-2023-51794, CVE-2023-51798)

Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input files. An attacker could possibly     use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary code     execution. This issue only affected Ubuntu 23.10. (CVE-2023-51795, CVE-2023-51796)

It was discovered that discovered that FFmpeg incorrectly handled certain input files. An attacker could     possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary     code execution. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu     23.10 and Ubuntu 24.04 LTS. (CVE-2024-31578)

It was discovered that discovered that FFmpeg incorrectly handled certain input files. An attacker could     possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary     code execution. This issue only affected Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2024-31582)

It was discovered that discovered that FFmpeg incorrectly handled certain input files. An attacker could     possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary     code execution. This issue only affected Ubuntu 23.10. (CVE-2024-31585)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-6803-1. The text
# itself is copyright (C) Canonical, Inc. See
# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
##

include('compat.inc');

if (description)
{
  script_id(198152);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/05/30");

  script_cve_id(
    "CVE-2023-49501",
    "CVE-2023-49502",
    "CVE-2023-49528",
    "CVE-2023-50007",
    "CVE-2023-50008",
    "CVE-2023-50009",
    "CVE-2023-50010",
    "CVE-2023-51793",
    "CVE-2023-51794",
    "CVE-2023-51795",
    "CVE-2023-51796",
    "CVE-2023-51798",
    "CVE-2024-31578",
    "CVE-2024-31582",
    "CVE-2024-31585"
  );
  script_xref(name:"IAVB", value:"2024-B-0041");
  script_xref(name:"USN", value:"6803-1");

  script_name(english:"Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 / 24.04 LTS : FFmpeg vulnerabilities (USN-6803-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 / 24.04 LTS host has packages installed that are
affected by multiple vulnerabilities as referenced in the USN-6803-1 advisory.

    Zeng Yunxiang and Song Jiaxuan discovered that FFmpeg incorrectly handled certain input files. An attacker
    could possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential
    arbitrary code execution. This issue only affected Ubuntu 24.04 LTS. (CVE-2023-49501)

    Zeng Yunxiang and Song Jiaxuan discovered that FFmpeg incorrectly handled certain input files. An attacker
    could possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential
    arbitrary code execution. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS,
    Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2023-49502)

    Zhang Ling and Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input files. An attacker
    could possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential
    arbitrary code execution. This issue only affected Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2023-49528)

    Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input files. An attacker could possibly
    use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary code
    execution. This issue only affected Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2023-50007)

    Zeng Yunxiang and Song Jiaxuan discovered that FFmpeg incorrectly handled certain input files. An attacker
    could possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential
    arbitrary code execution. This issue only affected Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2023-50008)

    Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input files. An attacker could possibly
    use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary code
    execution. This issue only affected Ubuntu 23.10. (CVE-2023-50009)

    Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input files. An attacker could possibly
    use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary code
    execution. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS
    and Ubuntu 23.10. (CVE-2023-50010)

    Zeng Yunxiang and Li Zeyuan discovered that FFmpeg incorrectly handled certain input files. An attacker
    could possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential
    arbitrary code execution. This issue only affected Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2023-51793)

    Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input files. An attacker could possibly
    use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary code
    execution. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS and Ubuntu 23.10.
    (CVE-2023-51794, CVE-2023-51798)

    Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input files. An attacker could possibly
    use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary code
    execution. This issue only affected Ubuntu 23.10. (CVE-2023-51795, CVE-2023-51796)

    It was discovered that discovered that FFmpeg incorrectly handled certain input files. An attacker could
    possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary
    code execution. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu
    23.10 and Ubuntu 24.04 LTS. (CVE-2024-31578)

    It was discovered that discovered that FFmpeg incorrectly handled certain input files. An attacker could
    possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary
    code execution. This issue only affected Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2024-31582)

    It was discovered that discovered that FFmpeg incorrectly handled certain input files. An attacker could
    possibly use this issue to cause FFmpeg to crash, resulting in a denial of service, or potential arbitrary
    code execution. This issue only affected Ubuntu 23.10. (CVE-2024-31585)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-6803-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-51793");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/04/12");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/05/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/05/30");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:20.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:22.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:23.10");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:24.04:-:lts");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:ffmpeg");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libav-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavcodec-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavcodec-extra");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavcodec-extra57");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavcodec-extra58");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavcodec-extra60");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavcodec-ffmpeg-extra56");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavcodec-ffmpeg56");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavcodec57");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavcodec58");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavcodec60");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavdevice-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavdevice-ffmpeg56");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavdevice57");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavdevice58");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavdevice60");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavfilter-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavfilter-extra");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavfilter-extra6");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavfilter-extra7");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavfilter-extra9");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavfilter-ffmpeg5");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavfilter6");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavfilter7");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavfilter9");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavformat-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavformat-extra");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavformat-extra58");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavformat-extra60");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavformat-ffmpeg56");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavformat57");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavformat58");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavformat60");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavresample-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavresample-ffmpeg2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavresample3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavresample4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavutil-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavutil-ffmpeg54");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavutil55");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavutil56");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libavutil58");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libpostproc-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libpostproc-ffmpeg53");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libpostproc54");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libpostproc55");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libpostproc57");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libswresample-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libswresample-ffmpeg1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libswresample2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libswresample3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libswresample4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libswscale-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libswscale-ffmpeg3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libswscale4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libswscale5");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libswscale7");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"stig_severity", value:"II");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2024 Canonical, Inc. / NASL script (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('16.04' >< os_release || '18.04' >< os_release || '20.04' >< os_release || '22.04' >< os_release || '23.10' >< os_release || '24.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 16.04 / 18.04 / 20.04 / 22.04 / 23.10 / 24.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var pkgs = [
    {'osver': '16.04', 'pkgname': 'ffmpeg', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libav-tools', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavcodec-dev', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavcodec-extra', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavcodec-ffmpeg-extra56', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavcodec-ffmpeg56', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavdevice-dev', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavdevice-ffmpeg56', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavfilter-dev', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavfilter-ffmpeg5', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavformat-dev', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavformat-ffmpeg56', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavresample-dev', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavresample-ffmpeg2', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavutil-dev', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libavutil-ffmpeg54', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libpostproc-dev', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libpostproc-ffmpeg53', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libswresample-dev', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libswresample-ffmpeg1', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libswscale-dev', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '16.04', 'pkgname': 'libswscale-ffmpeg3', 'pkgver': '7:2.8.17-0ubuntu0.1+esm7'},
    {'osver': '18.04', 'pkgname': 'ffmpeg', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavcodec-dev', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavcodec-extra', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavcodec-extra57', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavcodec57', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavdevice-dev', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavdevice57', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavfilter-dev', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavfilter-extra', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavfilter-extra6', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavfilter6', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavformat-dev', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavformat57', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavresample-dev', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavresample3', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavutil-dev', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libavutil55', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libpostproc-dev', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libpostproc54', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libswresample-dev', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libswresample2', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libswscale-dev', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '18.04', 'pkgname': 'libswscale4', 'pkgver': '7:3.4.11-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'ffmpeg', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavcodec-dev', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavcodec-extra', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavcodec-extra58', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavcodec58', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavdevice-dev', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavdevice58', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavfilter-dev', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavfilter-extra', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavfilter-extra7', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavfilter7', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavformat-dev', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavformat58', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavresample-dev', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavresample4', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavutil-dev', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libavutil56', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libpostproc-dev', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libpostproc55', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libswresample-dev', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libswresample3', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libswscale-dev', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '20.04', 'pkgname': 'libswscale5', 'pkgver': '7:4.2.7-0ubuntu0.1+esm5'},
    {'osver': '22.04', 'pkgname': 'ffmpeg', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavcodec-dev', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavcodec-extra', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavcodec-extra58', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavcodec58', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavdevice-dev', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavdevice58', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavfilter-dev', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavfilter-extra', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavfilter-extra7', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavfilter7', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavformat-dev', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavformat-extra', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavformat-extra58', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavformat58', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavutil-dev', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libavutil56', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libpostproc-dev', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libpostproc55', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libswresample-dev', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libswresample3', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libswscale-dev', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '22.04', 'pkgname': 'libswscale5', 'pkgver': '7:4.4.2-0ubuntu0.22.04.1+esm4'},
    {'osver': '23.10', 'pkgname': 'ffmpeg', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavcodec-dev', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavcodec-extra', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavcodec-extra60', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavcodec60', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavdevice-dev', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavdevice60', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavfilter-dev', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavfilter-extra', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavfilter-extra9', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavfilter9', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavformat-dev', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavformat-extra', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavformat-extra60', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavformat60', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavutil-dev', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libavutil58', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libpostproc-dev', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libpostproc57', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libswresample-dev', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libswresample4', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libswscale-dev', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '23.10', 'pkgname': 'libswscale7', 'pkgver': '7:6.0-6ubuntu1.1'},
    {'osver': '24.04', 'pkgname': 'ffmpeg', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavcodec-dev', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavcodec-extra', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavcodec-extra60', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavcodec60', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavdevice-dev', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavdevice60', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavfilter-dev', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavfilter-extra', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavfilter-extra9', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavfilter9', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavformat-dev', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavformat-extra', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavformat-extra60', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavformat60', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavutil-dev', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libavutil58', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libpostproc-dev', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libpostproc57', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libswresample-dev', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libswresample4', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libswscale-dev', 'pkgver': '7:6.1.1-3ubuntu5+esm1'},
    {'osver': '24.04', 'pkgname': 'libswscale7', 'pkgver': '7:6.1.1-3ubuntu5+esm1'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'ffmpeg / libav-tools / libavcodec-dev / libavcodec-extra / etc');
}
VendorProductVersionCPE
canonicalubuntu_linuxlibpostproc55p-cpe:/a:canonical:ubuntu_linux:libpostproc55
canonicalubuntu_linux20.04cpe:/o:canonical:ubuntu_linux:20.04:-:lts
canonicalubuntu_linux24.04cpe:/o:canonical:ubuntu_linux:24.04:-:lts
canonicalubuntu_linuxlibavdevice57p-cpe:/a:canonical:ubuntu_linux:libavdevice57
canonicalubuntu_linuxlibavfilter-extrap-cpe:/a:canonical:ubuntu_linux:libavfilter-extra
canonicalubuntu_linuxlibpostproc-ffmpeg53p-cpe:/a:canonical:ubuntu_linux:libpostproc-ffmpeg53
canonicalubuntu_linuxlibswscale7p-cpe:/a:canonical:ubuntu_linux:libswscale7
canonicalubuntu_linuxlibavcodec58p-cpe:/a:canonical:ubuntu_linux:libavcodec58
canonicalubuntu_linuxlibavdevice-devp-cpe:/a:canonical:ubuntu_linux:libavdevice-dev
canonicalubuntu_linuxlibavcodec-extra57p-cpe:/a:canonical:ubuntu_linux:libavcodec-extra57
Rows per page:
1-10 of 641

References

Related

osv 7
ubuntu 1
openvas 17
nessus 12
fedora 3
cvelist 15
ubuntucve 15
cve 15
vulnrichment 11
debiancve 15
nvd 15
osv
osv
ffmpeg vulnerabilities
2024-05-30 15:53:23
ffmpeg - security update
2024-06-15 00:00:00
CVE-2024-31578
2024-04-17 14:15:08
ubuntu
ubuntu
FFmpeg vulnerabilities
2024-05-30 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6803-1)
2024-05-31 00:00:00
Fedora: Security Advisory for chromium (FEDORA-2024-92780a83f9)
2024-05-27 00:00:00
Fedora: Security Advisory for chromium (FEDORA-2024-55e7e839f1)
2024-05-27 00:00:00
nessus
nessus
Debian dsa-5712 : ffmpeg - security update
2024-06-16 00:00:00
Fedora 39 : chromium (2024-55e7e839f1)
2024-05-11 00:00:00
Fedora 40 : chromium (2024-92780a83f9)
2024-05-11 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: chromium-124.0.6367.155-1.fc39
2024-05-11 02:22:42
[SECURITY] Fedora 40 Update: chromium-124.0.6367.155-1.fc40
2024-05-11 01:32:09
[SECURITY] Fedora 38 Update: chromium-125.0.6422.60-1.fc38
2024-05-18 01:44:05
cvelist
cvelist
CVE-2024-31585
2024-04-17 00:00:00
CVE-2023-49501
2024-04-19 00:00:00
CVE-2023-50009
2024-04-19 00:00:00
ubuntucve
ubuntucve
CVE-2024-31585
2024-04-17 00:00:00
CVE-2023-50009
2024-04-19 00:00:00
CVE-2023-51796
2024-04-19 00:00:00
cve
cve
CVE-2024-31585
2024-04-17 19:15:08
CVE-2023-51795
2024-04-19 17:15:52
CVE-2023-51798
2024-04-19 17:15:52
vulnrichment
vulnrichment
CVE-2023-50007
2024-04-19 00:00:00
CVE-2024-31578
2024-04-17 00:00:00
CVE-2023-51798
2024-04-19 00:00:00
debiancve
debiancve
CVE-2023-51795
2024-04-19 17:15:52
CVE-2023-51796
2024-04-19 17:15:52
CVE-2023-51798
2024-04-19 17:15:52
nvd
nvd
CVE-2024-31578
2024-04-17 14:15:08
CVE-2023-50008
2024-04-19 17:15:52
CVE-2024-31585
2024-04-17 19:15:08

8.3 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

15.5%

JSON
Related for UBUNTU_USN-6803-1.NASL
osv7ubuntu1openvas17nessus12fedora3cvelist15ubuntucve15cve15vulnrichment11debiancve15nvd15