Overview

File _patchinfo of Package patchinfo.4434

<patchinfo incident="4434">
  <issue id="957116" tracker="bnc">VUL-0: CVE-2015-8365: libav, ffmpeg: out of array access / asan_heap-oob</issue>
  <issue id="957115" tracker="bnc">VUL-0: CVE-2015-8364: libav, ffmpeg: Check image dimensions / integer overflow</issue>
  <issue id="957114" tracker="bnc">VUL-0: CVE-2015-8363: libav, ffmpeg: Check for duplicate SIZ marker / asan_heap-oob</issue>
  <issue id="CVE-2015-8364" tracker="cve" />
  <issue id="CVE-2015-8365" tracker="cve" />
  <issue id="CVE-2015-8363" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>jengelh</packager>
  <description>
This update to ffmpeg 2.8.3 fixes the following security issues:

* CVE-2015-8363: Check for duplicate SIZ marker / asan_heap-oob [boo#957114]
* CVE-2015-8364: Check image dimensions / integer overflow [boo#957115]
* CVE-2015-8365: out of array access / asan_heap-oob [boo#957116]
</description>
  <summary>Security update for ffmpeg</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places