64 matches found
openSUSE 16: ffmpeg-7 / ffmpeg-7-libavcodec-devel / ffmpeg-7-libavdevice-devel / etc (openSUSE-SU-2026:21211-1)
The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:21211-1 advisory. This update for ffmpeg-7 fixes the following issues - CVE-2026-40962: inadequate CENC subsample bounds checks can lead to an integer overflow...
OPENSUSE-SU-2026:21211-1 Security update for ffmpeg-7
This update for ffmpeg-7 fixes the following issues - CVE-2026-40962: inadequate CENC subsample bounds checks can lead to an integer overflow bsc1262237. Changes for ffmpeg-7: - Update to version 7.1.4: Codec, format, filter and various other bugfixes. lavc/aarch64: Fix addp overflow in...
SUSE SLED15 / SLES15 Security Update : ffmpeg-4 (SUSE-SU-2026:2445-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2445-1 advisory. This update for ffmpeg-4 fixes the following issues Update to version 4.4.7: - CVE-2023-6601: HLS Unsafe File...
CVE-2026-40962
creationtimestamp| type| source ---|---|--- 2026-05-29 10:04:33+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mmybw5zfqs2r 2026-05-29 10:04:34+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mmybwauay22r...
Security update for ffmpeg-4 (moderate)
openSUSE security update: security update for ffmpeg-4 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20726-1 Rating: moderate References: bsc1262237 Cross-References: CVE-2026-40962 CVSS scores: CVE-2026-40962 SUSE : 4.9...
ffmpeg-7-7.1.3-3.1 on GA media (moderate)
ffmpeg-7-7.1.3-3.1 on GA media Announcement ID: openSUSE-SU-2026:10768-1 Rating: moderate Cross-References: CVE-2026-40962 CVSS scores: CVE-2026-40962 SUSE : 4.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L CVE-2026-40962 SUSE : 2.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N...
ffmpeg-4-4.4.6-12.1 on GA media (moderate)
ffmpeg-4-4.4.6-12.1 on GA media Announcement ID: openSUSE-SU-2026:10767-1 Rating: moderate Cross-References: CVE-2026-40962 CVSS scores: CVE-2026-40962 SUSE : 4.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L CVE-2026-40962 SUSE : 2.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N...
CVE-2026-40962 vulnerabilities
Vulnerabilities for packages: ffmpeg...
CVE-2026-40962
FFmpeg before 8.1 has an integer overflow and resultant out-of-bounds write via CENC Common Encryption subsample data to libavformat/mov.c...
MAL-2025-40962 Malicious code in zeta-uglify-serialize-finally-gamma (npm)
The package zeta-uglify-serialize-finally-gamma was found to contain malicious code...
Linux Distros Unpatched Vulnerability : CVE-2022-40962
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox...
Linux Distros Unpatched Vulnerability : CVE-2024-40962
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that...
CentOS 7 : firefox (RHSA-2022:6711)
The remote CentOS Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:6711 advisory. - When injecting an HTML base element, some requests would ignore the CSP's base-uri settings and accept the injected element's base instead. This...
CVE-2024-40962
A NULL pointer dereference was found in the btrfszonefinishendio function in the Linux Kernel during the execution of test-case btrfs/167 on emulated zoned devices. This issue stems from missing checksum lists for NOCOW writes in zoned mode, as revealed by an assertion failure. The problem occurs...
SUSE CVE-2024-40962
In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that when he's running fstests' test-case btrfs/167 on emulated zoned devices, he's seeing the following NULL pointer dereference in...
DEBIAN-CVE-2024-40962
In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that when he's running fstests' test-case btrfs/167 on emulated zoned devices, he's seeing the following NULL pointer dereference in...
CVE-2024-40962 btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes
In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that when he's running fstests' test-case btrfs/167 on emulated zoned devices, he's seeing the following NULL pointer dereference in...
Amazon Linux 2 : firefox (ALASFIREFOX-2023-010)
The version of firefox installed on the remote host is prior to 102.4.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2FIREFOX-2023-010 advisory. 2023-09-27: CVE-2021-28429 was added to this advisory. Integer overflow vulnerability in avtimecodemakestring in...
CVE-2022-40962
creationtimestamp| type| source ---|---|--- 2022-12-22 22:30:08+00:00| seen| https://t.me/cibsecurity/55189...
CVE-2022-40962
Mozilla developers Nika Layzell, Timothy Nikkel, Sebastian Hengst, Andreas Pehrson, and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 104 and Firefox ESR 102.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these...