OPENSUSE-SU-2026:20855-1 Security update for ffmpeg-4

This update for ffmpeg-4 fixes the following issues: Changes in ffmpeg-4: - Add check for the return value of avmallocarray to avoid potential NULL pointer dereference. CVE-2025-10256, bsc1249431 - Update to version 4.4.7: Codecs, filters and other various bugfixes aacenctns: clamp filter directi...

Astra Linux - уязвимость в ffmpeg, ffmpeg5

It was discovered that FFmpeg git-master, N-113007-g8d24a28d06 contains a segmentation violation through the component /libavcodec/jpeg2000dec.c...

Astra Linux - уязвимость в ffmpeg, ffmpeg5

There is a heap-buffer-overflow write in jpeg2000dec FFmpeg that allows an attacker to potentially gain remote code execution or cause a denial of service through the JPEG2000’s channel definition cdef atom...

EUVD-2025-4688

Malicious code in bioql PyPI...

EUVD-2025-27255

Malicious code in bioql PyPI...

FFmpeg < 8.0 Heap-Buffer-Overflow

The version of FFmpeg installed on the remote host is prior to 8.0. It is, therefore, affected by a vulnerability: - A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows an attacker to potentially gain remote code execution or cause denial of service via the channel definition...

SUSE CVE-2025-9951

A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows an attacker to potentially gain remote code execution or cause denial of service via the channel definition cdef atom of JPEG2000...

Linux Distros Unpatched Vulnerability : CVE-2025-9951

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows an attacker to potentially gain remote code execution or cause denial of service via the...

CVE-2025-9951

A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows an attacker to potentially gain remote code execution or cause denial of service via the channel definition cdef atom of JPEG2000...

DEBIAN-CVE-2025-9951

A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows an attacker to potentially gain remote code execution or cause denial of service via the channel definition cdef atom of JPEG2000...

UBUNTU-CVE-2025-9951

A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows an attacker to potentially gain remote code execution or cause denial of service via the channel definition cdef atom of JPEG2000...

CVE-2025-9951

A heap-buffer-overflow write exists in jpeg2000dec FFmpeg which allows an attacker to potentially gain remote code execution or cause denial of service via the channel definition cdef atom of JPEG2000...

Linux Distros Unpatched Vulnerability : CVE-2025-22921

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c. CVE-2025-22921 Note that...

OESA-2025-2027 ffmpeg security update

FFmpeg is a complete and free Internet live audio and video broadcasting solution for Linux/Unix. It also includes a digital VCR. It can encode in real time in many formats including MPEG1 audio and video, MPEG4, h263, ac3, asf, avi, real, mjpeg, and flash. Security Fixes: FFmpeg...

CVE-2025-22921

FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c...

CVE-2025-22921

CVE-2025-22921 affects FFmpeg (git master) with a segmentation fault in the JPEG2000 decoder path (/libavcodec/jpeg2000dec.c). Affected component is FFmpeg; root cause is a segmentation violation in that decoder. Exploitation details are not provided in the connected documents; Debian LTS advisor...

CVE-2025-22921

FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c...

PT-2025-6968

Name of the Vulnerable Software and Affected Versions: FFmpeg git-master, N-113007-g8d24a28d06 Description: A segmentation violation was discovered in the component /libavcodec/jpeg2000dec.c. Recommendations: At the moment, there is no information about a newer version that contains a fix for thi...

PT-2025-36736

Name of the Vulnerable Software and Affected Versions: FFmpeg affected versions not specified Description: A heap-buffer-overflow write exists in the jpeg2000dec component of FFmpeg. This issue could allow a remote attacker to potentially execute code or cause a denial of service through the...

Updated ffmpeg packages fix security vulnerabilities

Updated ffmpeg packages fix security vulnerabilities: FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the concat protocol in an HTTP Live Streaming HLS M3U8 file, leading to an external HTTP request in which the URL string contains the first li...