Overview

File _patchinfo of Package patchinfo.35185

<patchinfo incident="35185">
  <issue tracker="cve" id="2020-22027"/>
  <issue tracker="cve" id="2021-38291"/>
  <issue tracker="cve" id="2023-51798"/>
  <issue tracker="bnc" id="1186607">VUL-1: CVE-2020-22027: ffmpeg: A heap-based Buffer Overflow vulnerability exits in  deflate16 at libavfilter/vf_neighbor.c</issue>
  <issue tracker="bnc" id="1189428">VUL-1: CVE-2021-38291: ffmpeg: FFmpeg version (git commit de8e6e67e7523e48bb27ac224a0b446df05e1640) suffers from a an assertion failure at src/libavutil/mathematics.c</issue>
  <issue tracker="bnc" id="1223304">VUL-0: CVE-2023-51798: ffmpeg,ffmpeg-4: floating point exception(FPE) via the interpolate function in libavfilter/vf_minterpolate.c</issue>
  <packager>qzhao</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for ffmpeg</summary>
  <description>This update for ffmpeg fixes the following issues:
  
- CVE-2020-22027: Fixed heap-based Buffer Overflow vulnerability exits in deflate16 at libavfilter/vf_neighbor.c (bsc#1186607)
- CVE-2021-38291: Fixed an assertion failure at src/libavutil/mathematics.c (bsc#1189428)
- CVE-2023-51798: Fixed floating point exception(FPE) via the interpolate function (bsc#1223304)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places