Download
| Alert*
oval:org.secpod.oval:def:2004960
In FFmpeg before 4.2, avcodec_open2 in libavcodec/utils.c allows a NULL pointer dereference and possibly unspecified other impact when there is no valid close function pointer. oval:org.secpod.oval:def:64686 ffmpeg: Tools for transcoding, streaming and playing of multimedia files Several security issues were fixed in FFmpeg. oval:org.secpod.oval:def:67009 ffmpeg: Tools for transcoding, streaming and playing of multimedia files Several security issues were fixed in FFmpeg. oval:org.secpod.oval:def:89047109 This update for ffmpeg fixes the following issues: - CVE-2020-13904: Fixed use-after-free via a crafted EXTINF duration in an m3u8 file . - CVE-2020-21041: Fixed buffer overflow vulnerability via apng_do_inverse_blend in libavcodec/pngenc.c . - CVE-2019-17539: Fixed NULL pointer dereference in avcod ... oval:org.secpod.oval:def:66713 Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed. oval:org.secpod.oval:def:89045585 This update for ffmpeg fixes the following issues: - CVE-2019-9721: Fixed a denial of service in the subtitle decoder in handle_open_brace from libavcodec/htmlsubtitles.c . - CVE-2020-22046: Fixed a denial of service vulnerability due to a memory leak in the avpriv_float_dsp_allocl function in libav ... oval:org.secpod.oval:def:604917 Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed. |