Описание
Security update for ffmpeg-4
This update for ffmpeg-4 fixes the following issues:
- Dropped support for libmfx to fix the following CVEs:
- libmfx: improper input validation (CVE-2023-48368, bsc#1226897)
- libmfx: improper buffer restrictions (CVE-2023-45221, bsc#1226898)
- libmfx: out-of-bounds read (CVE-2023-22656, bsc#1226899)
- libmfx: out-of-bounds write (CVE-2023-47282, bsc#1226900)
- libmfx: improper buffer restrictions (CVE-2023-47169, bsc#1226901)
- CVE-2024-7055: heap-based buffer overflow in pnmdec.c from the libavcodec library. (bsc#1229026)
Список пакетов
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS
libavcodec58_134-4.4-150400.3.42.1
libavformat58_76-4.4-150400.3.42.1
libavutil56_70-4.4-150400.3.42.1
libpostproc55_9-4.4-150400.3.42.1
libswresample3_9-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
libavcodec58_134-4.4-150400.3.42.1
libavformat58_76-4.4-150400.3.42.1
libavutil56_70-4.4-150400.3.42.1
libpostproc55_9-4.4-150400.3.42.1
libswresample3_9-4.4-150400.3.42.1
SUSE Linux Enterprise Module for Package Hub 15 SP5
ffmpeg-4-4.4-150400.3.42.1
ffmpeg-4-libavcodec-devel-4.4-150400.3.42.1
ffmpeg-4-libavdevice-devel-4.4-150400.3.42.1
ffmpeg-4-libavfilter-devel-4.4-150400.3.42.1
ffmpeg-4-libavformat-devel-4.4-150400.3.42.1
ffmpeg-4-libavresample-devel-4.4-150400.3.42.1
ffmpeg-4-libavutil-devel-4.4-150400.3.42.1
ffmpeg-4-libpostproc-devel-4.4-150400.3.42.1
ffmpeg-4-libswresample-devel-4.4-150400.3.42.1
ffmpeg-4-libswscale-devel-4.4-150400.3.42.1
ffmpeg-4-private-devel-4.4-150400.3.42.1
libavcodec58_134-4.4-150400.3.42.1
libavdevice58_13-4.4-150400.3.42.1
libavfilter7_110-4.4-150400.3.42.1
libavformat58_76-4.4-150400.3.42.1
libavresample4_0-4.4-150400.3.42.1
libavutil56_70-4.4-150400.3.42.1
libpostproc55_9-4.4-150400.3.42.1
libswresample3_9-4.4-150400.3.42.1
libswscale5_9-4.4-150400.3.42.1
SUSE Linux Enterprise Server 15 SP4-LTSS
libavcodec58_134-4.4-150400.3.42.1
libavformat58_76-4.4-150400.3.42.1
libavutil56_70-4.4-150400.3.42.1
libpostproc55_9-4.4-150400.3.42.1
libswresample3_9-4.4-150400.3.42.1
SUSE Linux Enterprise Server for SAP Applications 15 SP4
libavcodec58_134-4.4-150400.3.42.1
libavformat58_76-4.4-150400.3.42.1
libavutil56_70-4.4-150400.3.42.1
libpostproc55_9-4.4-150400.3.42.1
libswresample3_9-4.4-150400.3.42.1
SUSE Linux Enterprise Workstation Extension 15 SP5
libavcodec58_134-4.4-150400.3.42.1
libavformat58_76-4.4-150400.3.42.1
libavutil56_70-4.4-150400.3.42.1
libswresample3_9-4.4-150400.3.42.1
libswscale5_9-4.4-150400.3.42.1
openSUSE Leap 15.5
ffmpeg-4-4.4-150400.3.42.1
ffmpeg-4-libavcodec-devel-4.4-150400.3.42.1
ffmpeg-4-libavdevice-devel-4.4-150400.3.42.1
ffmpeg-4-libavfilter-devel-4.4-150400.3.42.1
ffmpeg-4-libavformat-devel-4.4-150400.3.42.1
ffmpeg-4-libavresample-devel-4.4-150400.3.42.1
ffmpeg-4-libavutil-devel-4.4-150400.3.42.1
ffmpeg-4-libpostproc-devel-4.4-150400.3.42.1
ffmpeg-4-libswresample-devel-4.4-150400.3.42.1
ffmpeg-4-libswscale-devel-4.4-150400.3.42.1
ffmpeg-4-private-devel-4.4-150400.3.42.1
libavcodec58_134-4.4-150400.3.42.1
libavcodec58_134-32bit-4.4-150400.3.42.1
libavdevice58_13-4.4-150400.3.42.1
libavdevice58_13-32bit-4.4-150400.3.42.1
libavfilter7_110-4.4-150400.3.42.1
libavfilter7_110-32bit-4.4-150400.3.42.1
libavformat58_76-4.4-150400.3.42.1
libavformat58_76-32bit-4.4-150400.3.42.1
libavresample4_0-4.4-150400.3.42.1
libavresample4_0-32bit-4.4-150400.3.42.1
libavutil56_70-4.4-150400.3.42.1
libavutil56_70-32bit-4.4-150400.3.42.1
libpostproc55_9-4.4-150400.3.42.1
libpostproc55_9-32bit-4.4-150400.3.42.1
libswresample3_9-4.4-150400.3.42.1
libswresample3_9-32bit-4.4-150400.3.42.1
libswscale5_9-4.4-150400.3.42.1
libswscale5_9-32bit-4.4-150400.3.42.1
Ссылки
- Link for SUSE-SU-2024:3358-1
- E-Mail link for SUSE-SU-2024:3358-1
- SUSE Security Ratings
- SUSE Bug 1226892
- SUSE Bug 1226897
- SUSE Bug 1226898
- SUSE Bug 1226899
- SUSE Bug 1226900
- SUSE Bug 1226901
- SUSE Bug 1229026
- SUSE CVE CVE-2023-22656 page
- SUSE CVE CVE-2023-45221 page
- SUSE CVE CVE-2023-47169 page
- SUSE CVE CVE-2023-47282 page
- SUSE CVE CVE-2023-48368 page
- SUSE CVE CVE-2024-7055 page
Описание
Out-of-bounds read in Intel(R) Media SDK and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavcodec58_134-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavformat58_76-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavutil56_70-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libpostproc55_9-4.4-150400.3.42.1
Ссылки
- CVE-2023-22656
- SUSE Bug 1226899
Описание
Improper buffer restrictions in Intel(R) Media SDK all versions may allow an authenticated user to potentially enable escalation of privilege via local access.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavcodec58_134-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavformat58_76-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavutil56_70-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libpostproc55_9-4.4-150400.3.42.1
Ссылки
- CVE-2023-45221
- SUSE Bug 1226898
Описание
Improper buffer restrictions in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavcodec58_134-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavformat58_76-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavutil56_70-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libpostproc55_9-4.4-150400.3.42.1
Ссылки
- CVE-2023-47169
- SUSE Bug 1226901
Описание
Out-of-bounds write in Intel(R) Media SDK all versions and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavcodec58_134-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavformat58_76-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavutil56_70-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libpostproc55_9-4.4-150400.3.42.1
Ссылки
- CVE-2023-47282
- SUSE Bug 1226900
Описание
Improper input validation in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavcodec58_134-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavformat58_76-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavutil56_70-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libpostproc55_9-4.4-150400.3.42.1
Ссылки
- CVE-2023-48368
- SUSE Bug 1226897
Описание
A vulnerability was found in FFmpeg up to 7.0.1. It has been classified as critical. This affects the function pnm_decode_frame in the library /libavcodec/pnmdec.c. The manipulation leads to heap-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 7.0.2 is able to address this issue. It is recommended to upgrade the affected component. The associated identifier of this vulnerability is VDB-273651.
Затронутые продукты
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavcodec58_134-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavformat58_76-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavutil56_70-4.4-150400.3.42.1
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libpostproc55_9-4.4-150400.3.42.1
Ссылки
- CVE-2024-7055
- SUSE Bug 1229026