Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP1-2020-1867


Security update for ffmpeg


Type: security
Severity: important
Issued: 2020-07-07
Description:
This update for ffmpeg fixes the following issues:

Security issues fixed:	  
- CVE-2019-17542: Fixed a heap-buffer overflow in vqa_decode_chunk due to an 
  out-of-array access (bsc#1154064).
- CVE-2019-12730: Fixed an uninitialized use of variables due to an improper 
  check (bsc#1137526).
- CVE-2019-9718: Fixed a denial of service in the subtitle decode (bsc#1129715).
- CVE-2018-13301: Fixed a denial of service while converting a crafted AVI file 
  to MPEG4 (bsc#1100352).
  

              

Packages


  • ffmpeg-3.4.2-4.27.1