Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-48434

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libavcodec/pthreadframe.c in FFmpeg before 5.1.2, as used in VLC and other products, leaves stale hwaccel state in worker threads, which allows attackers to...

8.1CVSS7.3AI score0.01512EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/03/20 12:0 a.m.21 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : ffmpeg-4 (SUSE-SU-2025:0958-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0958-1 advisory. - CVE-2022-48434: Fixed use after free in libavcodec/pthreadframe.c bsc1209934 - CVE-2020-22021:...

8.1CVSS6.3AI score0.01667EPSS
Exploits3References10
Slackware Linux
Slackware Linux
added 2024/08/22 7:14 p.m.36 views

[slackware-security] ffmpeg

New ffmpeg packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/ffmpeg-4.4.5-i586-1slack15.0.txz: Upgraded. This update addresses several vulnerabilities in FFmpeg which could result in denial of service, or...

8.8CVSS8.1AI score0.0347EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2024/08/22 12:0 a.m.29 views

Slackware Linux 15.0 ffmpeg Multiple Vulnerabilities (SSA:2024-235-01)

The version of ffmpeg installed on the remote host is prior to 4.4.5. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-235-01 advisory. New ffmpeg packages are available for Slackware 15.0 to fix security issues. Tenable has extracted the preceding description...

8.8CVSS6.6AI score0.0347EPSS
Exploits2References8
OSV
OSV
added 2024/07/19 11:8 a.m.4 views

OESA-2024-1873 ffmpeg security update

FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: An integer overflow...

8.1CVSS8AI score0.01512EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2024/06/26 12:0 a.m.30 views

Debian dsa-5721 : ffmpeg - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5721 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5721-1 [email protected] https://www.debian.org/securit...

8.1CVSS6.9AI score0.01512EPSS
Exploits2References12
Ubuntu
Ubuntu
added 2023/10/24 10:26 a.m.555 views

USN-6449-1: FFmpeg vulnerabilities

It was discovered that FFmpeg incorrectly managed memory resulting in a memory leak. An attacker could possibly use this issue to cause a denial of service via application crash. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. CVE-2020-22038 It was discovered that FFmpeg incorrect...

8.8CVSS7AI score0.01512EPSS
Exploits8
OpenVAS
OpenVAS
added 2023/05/08 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2023:2108-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.7AI score0.01512EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2023/05/08 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2023:2115-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.6AI score0.01699EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2023/05/06 12:0 a.m.27 views

SUSE SLES15: libavcodec-devel / libavcodec57 / libavcodec57-32bit / etc (SUSE-SU-2023:2115-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2115-1 advisory. - CVE-2019-13390: Fixed a potential crash when processing a crafted AVI stream bsc1140754. - CVE-2022-3341: Fixed a potential crash...

8.1CVSS6.7AI score0.01699EPSS
Exploits2References10
Tenable Nessus
Tenable Nessus
added 2023/05/06 12:0 a.m.37 views

SUSE SLED15: ffmpeg / ffmpeg-private-devel / libavcodec-devel / libavcodec57 / etc (SUSE-SU-2023:2108-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2108-1 advisory. - CVE-2022-48434: Fixed use after free in libavcodec/pthreadframe.c bsc1209934. Tenable has extracted the...

8.1CVSS6.8AI score0.01512EPSS
Exploits1References4
OSV
OSV
added 2023/05/05 10:26 a.m.5 views

SUSE-SU-2023:2108-1 Security update for ffmpeg

This update for ffmpeg fixes the following issues: - CVE-2022-48434: Fixed use after free in libavcodec/pthreadframe.c bsc1209934...

8.1CVSS8.2AI score0.01512EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/05/03 12:0 a.m.33 views

SUSE SLED15: ffmpeg-4 / ffmpeg-4-libavcodec-devel / ffmpeg-4-libavdevice-devel / etc (SUSE-SU-2023:2087-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2087-1 advisory. This updates fixes the following issues for ffmpeg-4: Security fixes: - CVE-2022-48434: Fixed use after...

8.1CVSS6.8AI score0.01512EPSS
Exploits1References5
OSV
OSV
added 2023/05/02 1:48 p.m.6 views

SUSE-SU-2023:2087-1 This update has recommended fixes for ffmpeg-4

This updates fixes the following issues for ffmpeg-4: Security fixes: - CVE-2022-48434: Fixed use after free in libavcodec/pthreadframe.c bsc1209934. Other fixes: - Add necessary subpackages to the Packagehub. bsc1206067...

8.1CVSS8.2AI score0.01512EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/04/13 12:0 a.m.39 views

Fedora 37 : ffmpeg (2023-32c3bbbbc9)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-32c3bbbbc9 advisory. New release with bug fixes across the tree Contains security fix for CVE-2022-48434 . Tenable has extracted the preceding description block directly from the...

8.1CVSS6.9AI score0.01512EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/03/29 12:0 a.m.57 views

CVE-2022-48434

libavcodec/pthreadframe.c in FFmpeg before 5.1.2, as used in VLC and other products, leaves stale hwaccel state in worker threads, which allows attackers to trigger a use-after-free and execute arbitrary code in some circumstances e.g., hardware re-initialization upon a mid-video SPS change when...

8.4AI score0.01512EPSS
Exploits1References6
CVE
CVE
added 2023/03/29 12:0 a.m.109 views

CVE-2022-48434

CVE-2022-48434 : FFmpeg’s libavcodec pthread_frame.c contains a use-after-free in worker threads due to stale hwaccel state, exploitable in some scenarios (e.g., mid-video SPS change with Direct3D11). Affected component: libavcodec in FFmpeg lib used by VLC and others. Vulnerable version: FFmpeg ...

8.1CVSS8.1AI score0.01512EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder