6 matches found
GLSA-202007-58 : FFmpeg: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202007-58 FFmpeg: Multiple vulnerabilities Multiple vulnerabilities have been discovered in FFmpeg. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for details...
Security Bulletin: A security vulnerability has been identified in FFMpeg shipped with IBM Watson Machine Learning Community Edition (WMLCE) containers
Summary The following CVEs have been resolved as part of this security update. This only affects container images since this package is not published as part of the WMLCE Conda channel. Vulnerability Details CVEID: CVE-2019-15942 DESCRIPTION: FFmpeg is vulnerable to a denial of service, caused by...
openSUSE Security Update : ffmpeg-4 (openSUSE-2020-24)
This update for ffmpeg-4 fixes the following issues : ffmpeg-4 was updated to version 4.0.5, fixes boo1133153 - CVE-2019-11339: The studio profile decoder in libavcodec/mpeg4videodec.c in FFmpeg 4.0 allowed remote attackers to cause a denial of service out-of-array access or possibly have...
openSUSE: Security Advisory for ffmpeg-4 (openSUSE-SU-2020:0024-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for ffmpeg-4 (moderate)
openSUSE Security Update: Security update for ffmpeg-4 Announcement ID: openSUSE-SU-2020:0024-1 Rating: moderate References: 1100345 1133123 1133153 1133155 1149839 Cross-References: CVE-2017-17555 CVE-2018-13305 CVE-2019-11338 CVE-2019-11339 CVE-2019-15942 Affected Products: openSUSE Leap 15.1...
CVE-2019-15942
CVE-2019-15942 affects FFmpeg up to version 4.2. The vulnerability is a condition/branch issue in the H.264 parser (libavcodec/h2645_parse.c) where alloc_rbsp_buffer mishandles rbsp_buffer, resulting in a numeric/conditional jump based on an uninitialized value. This can lead to a crash under cra...