Debian: Security Advisory (DLA-1611-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Update : ffmpeg / ffmpeg2 (openSUSE-2017-1067)

This update introduces lame and twolame. For ffmpeg2 it updates to version 2.8.13 and fixes several issues. These security issues were fixed : - CVE-2017-14058: The readdata function in libavformat/hls.c did not restrict reload attempts for an insufficient list, which allowed remote attackers to...

openSUSE Security Update : ffmpeg2 (openSUSE-2017-631)

This update for ffmpeg2 fixes security issues, bugs, and enables AC3 and MP3 decoding. The following vulnerabilities were fixed : - CVE-2017-7863: heap-based buffer overflow bsc1034179 - CVE-2017-7865: heap-based buffer overflow bsc1034177 - CVE-2017-7866: stack-based buffer overflow bsc1034176 -...

openSUSE Security Update : ffmpeg (openSUSE-2017-524)

This update for ffmpeg to version 3.3 fixes several issues. These security issues were fixed : - CVE-2016-10190: Heap-based buffer overflow in libavformat/http.c in FFmpeg allowed remote web servers to execute arbitrary code via a negative chunk size in an HTTP response boo1022920 - CVE-2016-1019...

CVE-2016-10191

CVE-2016-10191 is a heap-based buffer overflow in FFmpeg’s libavformat/rtmppkt.c that can be exploited remotely to execute arbitrary code by sending RTMP packets with mismatched size. Affected branches are FFmpeg up to 2.8.10, 3.0.x up to 3.0.5, 3.1.x up to 3.1.6, and 3.2.x up to 3.2.2. Public ad...