| AArch64 | |
| ppc64le | |
| s390x | |
| x86-64 |
- Add ffmpeg-CVE-2022-3109.patch: Backport from upstream to fix null pointer dereference in vp3_decode_frame() (bsc#1206442).
- Add ffmpeg-CVE-2020-21688.patch: Backport from upstream to fix a heap-use-after-free in the av_freep function in libavutil/mem.c of FFmpeg 4.2 allows attackers to execute arbitrary code (bsc#1189348). - Add ffmpeg-CVE-2020-21697.patch: Backport from upstream to fix a heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service (DOS) via a crafted avi file (bsc#1189350). - Add ffmpeg-CVE-2021-38114.patch: Backport from upstream to fix the return value of the init_vlc function is not checked (bsc#1189142).
- Add ffmpeg-CVE-2019-9721.patch: Backport from upstream to fix denial of service in the subtitle decoder in handle_open_brace from libavcodec/htmlsubtitles.c (bsc#1129714). - Add ffmpeg-CVE-2020-22046.patch: Backport from upstream to fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c (bsc#1186849). - Add ffmpeg-CVE-2020-22048.patch: Backport from upstream to fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c (bsc#1186859). - Add ffmpeg-CVE-2020-22049.patch: Backport from upstream to fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c (bsc#1186861). - Add ffmpeg-CVE-2020-22054.patch: Backport from upstream to fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c (bsc#1186863).
- Add ffmpeg-CVE-2020-13904.patch: Backport from upstream to fix use-after-free via a crafted EXTINF duration in an m3u8 file (bsc#1172640). - Add ffmpeg-CVE-2020-21041.patch: Backport from upstream to fix buffer overflow vulnerability via apng_do_inverse_blend in libavcodec/pngenc.c (bsc#1186406). - Add ffmpeg-CVE-2019-17539.patch: Backport from upstream to fix NULL pointer dereference in avcodec_open2 in libavcodec/utils.c (bsc# 1154065). - Add ffmpeg-CVE-2020-22026.patch: Backport from upstream to fix buffer overflow vulnerability exists in config_input() at libavfilter/af_tremolo.c (bsc#1186583). - Add ffmpeg-CVE-2020-22021.patch: Backport from upstream to fix buffer overflow vulnerability in filter_edges function in libavfilter/vf_yadif.c (bsc#1186586). - Add ffmpeg-CVE-2020-22020.patch: Backport from upstream to fix buffer overflow vulnerability in build_diff_map() in libavfilter/vf_fieldmatch.c (bsc#1186587). - Add ffmpeg-CVE-2020-22015.patch: Backport from upstream to fix buffer overflow vulnerability in mov_write_video_tag() due to the out of bounds in libavformat/movenc.c (bsc#1186596). - Add ffmpeg-CVE-2020-22016.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability at libavcodec/get_bits.h when writing .mov files (bsc#1186598). - Add ffmpeg-CVE-2020-22017.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists in ff_fill_rectangle() in libavfilter/drawutils.c (bsc#1186600). - Add ffmpeg-CVE-2020-22022.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists in filter_frame at libavfilter/vf_fieldorder.c (bsc#1186603, bsc#1190728, CVE-2020-22022, CVE-2020-20901). - Add ffmpeg-CVE-2020-22023.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists in filter_frame at libavfilter/vf_bitplanenoise.c (bsc#1186604) - Add ffmpeg-CVE-2020-22025.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists in gaussian_blur at libavfilter/vf_edgedetect.c (bsc#1186605, bsc#1190721, CVE-2020-22025, CVE-2020-20894). - Add ffmpeg-CVE-2020-22031.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists at libavfilter/vf_w3fdif.c in filter16_complex_low() (bsc#1186613). - Add ffmpeg-CVE-2020-22032.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists at libavfilter/vf_edgedetect.c in gaussian_blur() (bsc#1186614, bsc#1190727, CVE-2020-22032, CVE-2020-20900). - Add ffmpeg-CVE-2020-22033.patch: Backport from upstream to fix a heap-based Buffer Overflow Vulnerability exists at libavfilter/vf_vmafmotion.c in convolution_y_8bit() (CVE-2020-22033) and buffer overflow vulnerability in convolution_y_10bit() in libavfilter/vf_vmafmotion.c (CVE-2020-22019) (bsc#1186615, bsc#1186597). - Add ffmpeg-CVE-2020-22034.patch: Backport from upstream to fix a heap-based Buffer Overflow vulnerability exists at libavfilter/vf_floodfill.c (bsc#1186616). - Add ffmpeg-CVE-2020-20451.patch: Backport from upstream to fix denial of service issue due to resource management errors via fftools/cmdutils.c (bsc#1186658). - Add ffmpeg-CVE-2020-20448.patch: Backport from upstream to fix divide by zero issue via libavcodec/ratecontrol.c (bsc#1186660). - Add ffmpeg-CVE-2020-22038.patch: Backport from upstream to fix denial of service vulnerability exists due to a memory leak in the ff_v4l2_m2m_create_context function in v4l2_m2m.c (bsc#1186757). - Add ffmpeg-CVE-2020-22039.patch: Backport from upstream to fix denial of service vulnerability exists due to a memory leak in the inavi_add_ientry function (bsc#1186758). - Add ffmpeg-CVE-2020-22043.patch: Backport from upstream to fix denial of service vulnerability exists due to a memory leak at the fifo_alloc_common function in libavutil/fifo.c (bsc#1186762). - Add ffmpeg-CVE-2020-22044.patch: Backport from upstream to fix denial of service vulnerability exists due to a memory leak in the url_open_dyn_buf_internal function in libavformat/aviobuf.c (bsc#1186763).
- Add ffmpeg-CVE-2021-38094.patch: Backport from upstream to fix integer overflow vulnerability in function filter_sobel in libavfilter/vf_convolution.c (bsc#1190735, bsc#1190734, bsc#1190733, bsc#1190724, bsc#1190731, bsc#1190732, CVE-2021-38094, CVE-2021-38093, CVE-2021-38092, CVE-2020-20898, CVE-2021-38090, CVE-2021-38091). - Add ffmpeg-CVE-2020-22037.patch: Backport from upstream to fix denial of service vulnerability exists due to a memory leak in avcodec_alloc_context3 at options.c (bsc#1186756). - Add ffmpeg-CVE-2021-3566.patch: Backport from upstream to fix exposure of sensitive information on ffmpeg version prior to 4.3 (bsc#1189166). - Add ffmpeg-CVE-2020-35965.patch: Backport from upstream to fix out-of-bounds write in decode_frame in libavcodec/exr.c (bsc#1187852). - Add ffmpeg-CVE-2020-20892.patch: Backport from upstream to fix an issue was discovered in function filter_frame in libavfilter/vf_lenscorrection.c (bsc#1190719). - Add ffmpeg-CVE-2020-20891.patch: Backport from upstream to fix buffer overflow vulnerability in function config_input in libavfilter/vf_gblur.c (bsc#1190718). - Add ffmpeg-CVE-2020-20895.patch: Backport from upstream to fix buffer overflow vulnerability in function filter_vertically_##name in libavfilter/vf_avgblur.c (bsc#1190722). - Add ffmpeg-CVE-2020-20896.patch: Backport from upstream to fix an issue was discovered in function latm_write_packet in libavformat/latmenc.c (bsc#1190723). - Add ffmpeg-CVE-2020-20899.patch: Backport from upstream to fix buffer overflow vulnerability in function config_props in libavfilter/vf_bwdif.c (bsc#1190726). - Add ffmpeg-CVE-2020-20902.patch: Backport from upstream to fix out-of-bounds read vulnerability exists in long_term_filter function in g729postfilter.c (bsc#1190729).
- Add ffmpeg-CVE-2020-22042.patch: Backport from upstream to fix denial of service vulnerability exists due to a memory leak is affected by: memory leak in the link_filter_inouts function in libavfilter/graphparser.c (bsc#1186761).
- Add ffmpeg-CVE-2021-38171.patch: Backport from upstream to fix adts_decode_extradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the init_get_bits return value (bsc#1189724).