Overview

File _patchinfo of Package patchinfo.27461

<patchinfo incident="27461">
  <issue tracker="cve" id="2019-13390"/>
  <issue tracker="cve" id="2022-3341"/>
  <issue tracker="cve" id="2022-48434"/>
  <issue tracker="bnc" id="1140754">VUL-1: CVE-2019-13390: ffmpeg: division by zero at adx_write_trailer in libavformat/rawenc.c</issue>
  <issue tracker="bnc" id="1206778">VUL-0: CVE-2022-3341: ffmpeg-4,ffmpeg: null pointer dereference in decode_main_header() in libavformat/nutdec.c</issue>
  <issue tracker="bnc" id="1209934">VUL-0: CVE-2022-48434: ffmpeg-4,ffmpeg: Use after free in libavcodec/pthread_frame.c</issue>
  <packager>AZhou</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for ffmpeg</summary>
  <description>This update for ffmpeg fixes the following issues:

- CVE-2019-13390: Fixed a potential crash when processing a crafted AVI stream (bsc#1140754).
- CVE-2022-3341: Fixed a potential crash when processing a crafted NUT stream (bsc#1206778).
- CVE-2022-48434: Fixed use after free in libavcodec/pthread_frame.c (bsc#1209934). 
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places