SUSE Package Hub - SUSE-SLE-Module-Packagehub-Subpackages-15-SP1-2020-1867

Update Info

SUSE-SLE-Module-Packagehub-Subpackages-15-SP1-2020-1867

Security update for ffmpeg

Type: security

Severity: important

Issued: 2020-07-07

Description:

This update for ffmpeg fixes the following issues:

Security issues fixed:	  
- CVE-2019-17542: Fixed a heap-buffer overflow in vqa_decode_chunk due to an 
  out-of-array access (bsc#1154064).
- CVE-2019-12730: Fixed an uninitialized use of variables due to an improper 
  check (bsc#1137526).
- CVE-2019-9718: Fixed a denial of service in the subtitle decode (bsc#1129715).
- CVE-2018-13301: Fixed a denial of service while converting a crafted AVI file 
  to MPEG4 (bsc#1100352).

References

CVE: CVE-2019-9718
CVE: CVE-2019-17542
CVE: CVE-2019-12730
CVE: CVE-2018-13301
Bugzilla: 1154064 VUL-0: CVE-2019-17542: ffmpeg: heap-based buffer overflow in vqa_decode_chunk because of an out-of-array access in vqa_decode_init in libavcodec/vqavideo.c
Bugzilla: 1137526 VUL-1: CVE-2019-12730: ffmpeg: aa_read_header in libavformat/aadec.c does not check for sscanf failure and consequently allows use of uninitialized variables
Bugzilla: 1129715 VUL-1: CVE-2019-9718: ffmpeg: denial of service in the subtitle decoder in ff_htmlmarkup_to_ass from libavcodec/htmlsubtitles.c
Bugzilla: 1100352 VUL-1: CVE-2018-13301: ffmpeg: missing check of a profile value before setting it, the ff_mpeg4_decode_picture_header function in libavcodec/mpeg4videodec.c may trigger a NULL pointer dereference

Packages

ffmpeg-3.4.2-4.27.1