Overview Details

File _patchinfo of Package patchinfo

<patchinfo incident="6862">
  <issue id="1015120" tracker="bnc">VUL-0: CVE-2016-9561: ffmpeg: Huge amount memory allocated, resulting in DoS of ffmpeg</issue>
  <issue id="1022921" tracker="bnc">VUL-0: CVE-2016-10191: ffmpeg: remote exploitaion results code execution [ 2 - libavformat/rtmppkt.c ]</issue>
  <issue id="1022922" tracker="bnc">VUL-0: CVE-2016-10192: ffmpeg: remote exploitaion results code execution [ 3 - ffserver.c ]</issue>
  <category>security</category>
  <issue id="2016-9561" tracker="cve" />
  <issue id="2016-10191" tracker="cve" />
  <issue id="2016-10192" tracker="cve" />
  <issue id="2017-5024" tracker="cve" />
  <issue id="2017-5025" tracker="cve" />
  <rating>moderate</rating>
  <packager>plater</packager>
  <description>This update of ffmpeg to version 3.1.8 fixes the following security issues:

- CVE-2016-9561: DoS through huge memory allocation (bsc#1015120)
- CVE-2016-10191: remote code execution vulnerability (bsc#1022921)
- CVE-2016-10192: remote code execution vulnerability (bsc#1022922)
- CVE-2017-5024: Heap overflow
- CVE-2017-5025: Heap overflow
</description>
  <summary>Security update for ffmpeg</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places