SUSE-SU-2018:3609-1

Опубликовано: 02 нояб. 2018

Источник: suse-cvrf

Описание

Security update for ffmpeg

This update for ffmpeg fixes the following issues:

CVE-2018-13300: An improper argument passed to the avpriv_request_sample function may have triggered an out-of-array read while converting a crafted AVI file to MPEG4, leading to a denial of service and possibly an information disclosure (bsc#1100348)
CVE-2018-15822: The flv_write_packet function did not check for an empty audio packet, leading to an assertion failure and DoS (bsc#1105869)
CVE-2018-13305: Due to a missing check for negative values of the mquant variable, the vc1_put_blocks_clamped function in libavcodec/vc1_block.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to an information disclosure or a denial of service. (bsc#1100345).
CVE-2018-12458: An improper integer type in the mpeg4_encode_gop_header function in libavcodec/mpeg4videoenc.c might have triggered an assertion violation while converting a crafted AVI file to MPEG4, leading to a denial of service. (bsc#1097983).

Список пакетов

SUSE Linux Enterprise Module for Desktop Applications 15

libavcodec57-3.4.2-4.12.4

libavutil-devel-3.4.2-4.12.4

libavutil55-3.4.2-4.12.4

libpostproc-devel-3.4.2-4.12.4

libpostproc54-3.4.2-4.12.4

libswresample-devel-3.4.2-4.12.4

libswresample2-3.4.2-4.12.4

libswscale-devel-3.4.2-4.12.4

libswscale4-3.4.2-4.12.4

SUSE Linux Enterprise Module for Package Hub 15

ffmpeg-3.4.2-4.12.4

libavdevice57-3.4.2-4.12.4

libavfilter6-3.4.2-4.12.4

SUSE Linux Enterprise Workstation Extension 15

libavcodec-devel-3.4.2-4.12.4

libavformat-devel-3.4.2-4.12.4

libavformat57-3.4.2-4.12.4

libavresample-devel-3.4.2-4.12.4

libavresample3-3.4.2-4.12.4

Ссылки

https://www.suse.com/support/update/announcement/2018/suse-su-20183609-1/
Link for SUSE-SU-2018:3609-1
https://lists.suse.com/pipermail/sle-security-updates/2018-November/004825.html
E-Mail link for SUSE-SU-2018:3609-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1097983
SUSE Bug 1097983
https://bugzilla.suse.com/1100345
SUSE Bug 1100345
https://bugzilla.suse.com/1100348
SUSE Bug 1100348
https://bugzilla.suse.com/1105869
SUSE Bug 1105869
https://www.suse.com/security/cve/CVE-2018-12458/
SUSE CVE CVE-2018-12458 page
https://www.suse.com/security/cve/CVE-2018-13300/
SUSE CVE CVE-2018-13300 page
https://www.suse.com/security/cve/CVE-2018-13305/
SUSE CVE CVE-2018-13305 page
https://www.suse.com/security/cve/CVE-2018-15822/
SUSE CVE CVE-2018-15822 page

Описание

An improper integer type in the mpeg4_encode_gop_header function in libavcodec/mpeg4videoenc.c in FFmpeg 2.8 and 4.0 may trigger an assertion violation while converting a crafted AVI file to MPEG4, leading to a denial of service.

Затронутые продукты

SUSE Linux Enterprise Module for Desktop Applications 15:libavcodec57-3.4.2-4.12.4

SUSE Linux Enterprise Module for Desktop Applications 15:libavutil-devel-3.4.2-4.12.4

SUSE Linux Enterprise Module for Desktop Applications 15:libavutil55-3.4.2-4.12.4

SUSE Linux Enterprise Module for Desktop Applications 15:libpostproc-devel-3.4.2-4.12.4

Ссылки

https://www.suse.com/security/cve/CVE-2018-12458.html
CVE-2018-12458
https://bugzilla.suse.com/1097983
SUSE Bug 1097983

Описание

In FFmpeg 3.2 and 4.0.1, an improper argument (AVCodecParameters) passed to the avpriv_request_sample function in the handle_eac3 function in libavformat/movenc.c may trigger an out-of-array read while converting a crafted AVI file to MPEG4, leading to a denial of service and possibly an information disclosure.

Затронутые продукты

SUSE Linux Enterprise Module for Desktop Applications 15:libavcodec57-3.4.2-4.12.4

SUSE Linux Enterprise Module for Desktop Applications 15:libavutil-devel-3.4.2-4.12.4

SUSE Linux Enterprise Module for Desktop Applications 15:libavutil55-3.4.2-4.12.4

SUSE Linux Enterprise Module for Desktop Applications 15:libpostproc-devel-3.4.2-4.12.4

Ссылки

https://www.suse.com/security/cve/CVE-2018-13300.html
CVE-2018-13300
https://bugzilla.suse.com/1100348
SUSE Bug 1100348

Описание

In FFmpeg 4.0.1, due to a missing check for negative values of the mquant variable, the vc1_put_blocks_clamped function in libavcodec/vc1_block.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to an information disclosure or a denial of service.

Затронутые продукты

SUSE Linux Enterprise Module for Desktop Applications 15:libavcodec57-3.4.2-4.12.4

SUSE Linux Enterprise Module for Desktop Applications 15:libavutil-devel-3.4.2-4.12.4

SUSE Linux Enterprise Module for Desktop Applications 15:libavutil55-3.4.2-4.12.4

SUSE Linux Enterprise Module for Desktop Applications 15:libpostproc-devel-3.4.2-4.12.4

Ссылки

https://www.suse.com/security/cve/CVE-2018-13305.html
CVE-2018-13305
https://bugzilla.suse.com/1100345
SUSE Bug 1100345

Описание

The flv_write_packet function in libavformat/flvenc.c in FFmpeg through 2.8 does not check for an empty audio packet, leading to an assertion failure.

Затронутые продукты

SUSE Linux Enterprise Module for Desktop Applications 15:libavcodec57-3.4.2-4.12.4

SUSE Linux Enterprise Module for Desktop Applications 15:libavutil-devel-3.4.2-4.12.4

SUSE Linux Enterprise Module for Desktop Applications 15:libavutil55-3.4.2-4.12.4

SUSE Linux Enterprise Module for Desktop Applications 15:libpostproc-devel-3.4.2-4.12.4

Ссылки

https://www.suse.com/security/cve/CVE-2018-15822.html
CVE-2018-15822
https://bugzilla.suse.com/1105869
SUSE Bug 1105869

SUSE-SU-2018:3609-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Desktop Applications 15

SUSE Linux Enterprise Module for Package Hub 15

SUSE Linux Enterprise Workstation Extension 15

Ссылки

Уязвимость: CVE-2018-12458

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-13300

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-13305

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2018-15822

Описание

Затронутые продукты

Ссылки