19 matches found
[slackware-security] ffmpeg
New ffmpeg packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/ffmpeg-4.4.5-i586-1slack15.0.txz: Upgraded. This update addresses several vulnerabilities in FFmpeg which could result in denial of service, or...
Slackware Linux 15.0 ffmpeg Multiple Vulnerabilities (SSA:2024-235-01)
The version of ffmpeg installed on the remote host is prior to 4.4.5. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-235-01 advisory. New ffmpeg packages are available for Slackware 15.0 to fix security issues. Tenable has extracted the preceding description...
openSUSE: Security Advisory for ffmpeg (SUSE-SU-2023:0008-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3454-1] ffmpeg security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3454-1 [email protected] https://www.debian.org/lts/security/ Sylvain Beucler June 13, 2023 https://wiki.debian.org/LTS -...
Debian dla-3454 : ffmpeg - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3454 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3454-1 [email protected]...
USN-5958-1: FFmpeg vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Canonical Ubuntu 22.04 Description It was discovered that FFmpeg could be made to dereference a null pointer. An attacker could possibly use this to cause a denial of service via application crash. These issues only...
Debian DSA-5394-1 : ffmpeg - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5394 advisory. Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if...
[SECURITY] [DSA 5394-1] ffmpeg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5394-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 30, 2023 https://www.debian.org/security/faq -...
Mageia: Security Advisory (MGASA-2023-0004)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-5958-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM : FFmpeg vulnerabilities (USN-5958-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5958-1 advisory. It was discovered that FFmpeg could be made to dereference a null pointer. An attacker could possibly use this to cau...
MGASA-2023-0004 Updated ffmpeg packages fix security vulnerability
An issue was discovered in the FFmpeg package, where vp3decodeframe in libavcodec/vp3.c lacks check of the return value of avmalloc and will cause a null pointer dereference, impacting availability. CVE-2022-3109...
SUSE: Security Advisory (SUSE-SU-2023:0007-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2023:0008-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15: ffmpeg-4 / ffmpeg-4-libavcodec-devel / ffmpeg-4-libavdevice-devel / etc (SUSE-SU-2023:0008-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0008-1 advisory. - CVE-2022-3109: Fixed null pointer dereference in vp3decodeframe bsc1206442. Tenable has extracted the...
SUSE-SU-2023:0008-1 Security update for ffmpeg-4
This update for ffmpeg-4 fixes the following issues: - CVE-2022-3109: Fixed null pointer dereference in vp3decodeframe bsc1206442...
SUSE-SU-2023:0007-1 Security update for ffmpeg
This update for ffmpeg fixes the following issues: - CVE-2022-3109: Fixed null pointer dereference in vp3decodeframe bsc1206442...
CVE-2022-3109
The connected documents confirm CVE-2022-3109 affects FFmpeg's vp3_decode_frame in libavcodec/vp3.c, where av_malloc() return is not checked, leading to potential NULL pointer dereference and availability impact. Affected advisories (Debian DSA-5394-1, DLA-3454-1) indicate fixes in FFmpeg package...
CVE-2022-3109
An issue was discovered in the FFmpeg package, where vp3decodeframe in libavcodec/vp3.c lacks check of the return value of avmalloc and will cause a null pointer dereference, impacting availability...