SUSE SLED15 / SLES15 Security Update : ffmpeg-4 (SUSE-SU-2026:2445-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2445-1 advisory. This update for ffmpeg-4 fixes the following issues Update to version 4.4.7: - CVE-2023-6601: HLS Unsafe File...

CVE-2026-40962

creationtimestamp| type| source ---|---|--- 2026-05-29 10:04:33+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mmybw5zfqs2r 2026-05-29 10:04:34+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mmybwauay22r...

ffmpeg-7-7.1.3-3.1 on GA media (moderate)

ffmpeg-7-7.1.3-3.1 on GA media Announcement ID: openSUSE-SU-2026:10768-1 Rating: moderate Cross-References: CVE-2026-40962 CVSS scores: CVE-2026-40962 SUSE : 4.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L CVE-2026-40962 SUSE : 2.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N...

Security update for ffmpeg-4 (moderate)

openSUSE security update: security update for ffmpeg-4 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20726-1 Rating: moderate References: bsc1262237 Cross-References: CVE-2026-40962 CVSS scores: CVE-2026-40962 SUSE : 4.9...

ffmpeg-4-4.4.6-12.1 on GA media (moderate)

ffmpeg-4-4.4.6-12.1 on GA media Announcement ID: openSUSE-SU-2026:10767-1 Rating: moderate Cross-References: CVE-2026-40962 CVSS scores: CVE-2026-40962 SUSE : 4.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L CVE-2026-40962 SUSE : 2.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N...

CVE-2026-40962 vulnerabilities

Vulnerabilities for packages: ffmpeg...

CVE-2026-40962

FFmpeg before 8.1 has an integer overflow and resultant out-of-bounds write via CENC Common Encryption subsample data to libavformat/mov.c...

MAL-2025-40962 Malicious code in zeta-uglify-serialize-finally-gamma (npm)

The package zeta-uglify-serialize-finally-gamma was found to contain malicious code...

Linux Distros Unpatched Vulnerability : CVE-2022-40962

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox...

Linux Distros Unpatched Vulnerability : CVE-2024-40962

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that...

CentOS 7 : firefox (RHSA-2022:6711)

The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6711 advisory. - When injecting an HTML base element, some requests would ignore the CSP's base-uri settings and accept the injected element's base instead. This...

CVE-2024-40962

A NULL pointer dereference was found in the btrfszonefinishendio function in the Linux Kernel during the execution of test-case btrfs/167 on emulated zoned devices. This issue stems from missing checksum lists for NOCOW writes in zoned mode, as revealed by an assertion failure. The problem occurs...

SUSE CVE-2024-40962

In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that when he's running fstests' test-case btrfs/167 on emulated zoned devices, he's seeing the following NULL pointer dereference in...

DEBIAN-CVE-2024-40962

In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that when he's running fstests' test-case btrfs/167 on emulated zoned devices, he's seeing the following NULL pointer dereference in...

CVE-2024-40962 btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes

In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that when he's running fstests' test-case btrfs/167 on emulated zoned devices, he's seeing the following NULL pointer dereference in...

Amazon Linux 2 : firefox (ALASFIREFOX-2023-010)

The version of firefox installed on the remote host is prior to 102.4.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2023-010 advisory. 2023-09-27: CVE-2021-28429 was added to this advisory. Integer overflow vulnerability in avtimecodemakestring in...

CVE-2022-40962

creationtimestamp| type| source ---|---|--- 2022-12-22 22:30:08+00:00| seen| https://t.me/cibsecurity/55189...

CVE-2022-40962

Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 104 and Firefox ESR 102.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these...

CVE-2022-40962

CVE-2022-40962 is a memory safety issue in Firefox 104 and Firefox ESR 102.2 reported by Mozilla Fuzzing Team. The connected documents confirm memory corruption indicators and state that, with enough effort, some bugs could be exploited to run arbitrary code. The vulnerability affects Firefox ESR...

AlmaLinux 9 : thunderbird (ALSA-2022:6717)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:6717 advisory. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...