Описание
Security update for ffmpeg
This update for ffmpeg fixes the following issues:
Security issue fixed:
- CVE-2018-14395: Fixed a divide-by-zero error in libavformat/movenc.c that allowed attackers to cause a DoS (bsc#1101889)
- CVE-2018-14394: Fixed a divide-by-zero error in libavformat/movenc.c that allowed attackers to cause a DoS (bsc#1101888).
Список пакетов
SUSE Linux Enterprise Module for Desktop Applications 15
libavcodec57-3.4.2-4.17.26
libavutil-devel-3.4.2-4.17.26
libavutil55-3.4.2-4.17.26
libpostproc-devel-3.4.2-4.17.26
libpostproc54-3.4.2-4.17.26
libswresample-devel-3.4.2-4.17.26
libswresample2-3.4.2-4.17.26
libswscale-devel-3.4.2-4.17.26
libswscale4-3.4.2-4.17.26
SUSE Linux Enterprise Module for Package Hub 15
ffmpeg-3.4.2-4.17.26
libavdevice57-3.4.2-4.17.26
libavfilter6-3.4.2-4.17.26
SUSE Linux Enterprise Workstation Extension 15
libavcodec-devel-3.4.2-4.17.26
libavformat-devel-3.4.2-4.17.26
libavformat57-3.4.2-4.17.26
libavresample-devel-3.4.2-4.17.26
libavresample3-3.4.2-4.17.26
Ссылки
- Link for SUSE-SU-2019:1299-1
- E-Mail link for SUSE-SU-2019:1299-1
- SUSE Security Ratings
- SUSE Bug 1101888
- SUSE Bug 1101889
- SUSE CVE CVE-2018-14394 page
- SUSE CVE CVE-2018-14395 page
Описание
libavformat/movenc.c in FFmpeg before 4.0.2 allows attackers to cause a denial of service (application crash caused by a divide-by-zero error) with a user crafted Waveform audio file.
Затронутые продукты
SUSE Linux Enterprise Module for Desktop Applications 15:libavcodec57-3.4.2-4.17.26
SUSE Linux Enterprise Module for Desktop Applications 15:libavutil-devel-3.4.2-4.17.26
SUSE Linux Enterprise Module for Desktop Applications 15:libavutil55-3.4.2-4.17.26
SUSE Linux Enterprise Module for Desktop Applications 15:libpostproc-devel-3.4.2-4.17.26
Ссылки
- CVE-2018-14394
- SUSE Bug 1101888
Описание
libavformat/movenc.c in FFmpeg 3.2 and 4.0.2 allows attackers to cause a denial of service (application crash caused by a divide-by-zero error) with a user crafted audio file when converting to the MOV audio format.
Затронутые продукты
SUSE Linux Enterprise Module for Desktop Applications 15:libavcodec57-3.4.2-4.17.26
SUSE Linux Enterprise Module for Desktop Applications 15:libavutil-devel-3.4.2-4.17.26
SUSE Linux Enterprise Module for Desktop Applications 15:libavutil55-3.4.2-4.17.26
SUSE Linux Enterprise Module for Desktop Applications 15:libpostproc-devel-3.4.2-4.17.26
Ссылки
- CVE-2018-14395
- SUSE Bug 1101889