Package Release Info

ffmpeg-3.4.2-11.17.1

Update Info: SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-3521
Available in Package Hub : 15 SP3 Subpackages Updates

platforms

AArch64
ppc64le
s390x
x86-64

subpackages

ffmpeg

ffmpeg-debuginfo

ffmpeg-debugsource

libavdevice57

libavdevice57-debuginfo

libavfilter6

libavfilter6-debuginfo

Change Logs

* Thu Oct 14 2021 alynx.zhou@suse.com

- Add ffmpeg-CVE-2021-38094.patch: Backport from upstream to fix
  integer overflow vulnerability in function filter_sobel in
  libavfilter/vf_convolution.c (bsc#1190735, bsc#1190734,
  bsc#1190733, bsc#1190724, bsc#1190731, bsc#1190732,
  CVE-2021-38094, CVE-2021-38093, CVE-2021-38092, CVE-2020-20898,
  CVE-2021-38090, CVE-2021-38091).
- Add ffmpeg-CVE-2020-22037.patch: Backport from upstream to fix
  denial of service vulnerability exists due to a memory leak in
  avcodec_alloc_context3 at options.c (bsc#1186756).
- Add ffmpeg-CVE-2021-3566.patch: Backport from upstream to fix
  exposure of sensitive information on ffmpeg version prior to 4.3
  (bsc#1189166).
- Add ffmpeg-CVE-2020-35965.patch: Backport from upstream to fix
  out-of-bounds write in decode_frame in libavcodec/exr.c
  (bsc#1187852).
- Add ffmpeg-CVE-2020-20892.patch: Backport from upstream to fix
  an issue was discovered in function filter_frame in
  libavfilter/vf_lenscorrection.c (bsc#1190719).
- Add ffmpeg-CVE-2020-20891.patch: Backport from upstream to fix
  buffer overflow vulnerability in function config_input in
  libavfilter/vf_gblur.c (bsc#1190718).
- Add ffmpeg-CVE-2020-20895.patch: Backport from upstream to fix
  buffer overflow vulnerability in function
  filter_vertically_##name in libavfilter/vf_avgblur.c
  (bsc#1190722).
- Add ffmpeg-CVE-2020-20896.patch: Backport from upstream to fix
  an issue was discovered in function latm_write_packet in
  libavformat/latmenc.c (bsc#1190723).
- Add ffmpeg-CVE-2020-20899.patch: Backport from upstream to fix
  buffer overflow vulnerability in function config_props in
  libavfilter/vf_bwdif.c (bsc#1190726).
- Add ffmpeg-CVE-2020-20902.patch: Backport from upstream to fix
  out-of-bounds read vulnerability exists in long_term_filter
  function in g729postfilter.c (bsc#1190729).

Version: 3.4.2-11.14.1

* Mon Sep 27 2021 alynx.zhou@suse.com

- Add ffmpeg-CVE-2020-22042.patch: Backport from upstream to fix
  denial of service vulnerability exists due to a memory leak is
  affected by: memory leak in the link_filter_inouts function in
  libavfilter/graphparser.c (bsc#1186761).

Version: 3.4.2-11.11.1

* Wed Sep 01 2021 alynx.zhou@suse.com

- Add ffmpeg-CVE-2021-38171.patch: Backport from upstream to fix
  adts_decode_extradata in libavformat/adtsenc.c in FFmpeg 4.4
  does not check the init_get_bits return value (bsc#1189724).