rpm package
opensuse/ffmpeg-4&distro=openSUSE Leap 15.6
pkg:rpm/opensuse/ffmpeg-4&distro=openSUSE%20Leap%2015.6
Vulnerabilities (24)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-31578 | — | < 4.4.5-150600.13.16.1 | 4.4.5-150600.13.16.1 | Apr 17, 2024 | FFmpeg version n6.1.1 was discovered to contain a heap use-after-free via the av_hwframe_ctx_init function. | ||
| CVE-2022-48434 | — | < 4.4.5-150600.13.19.1 | 4.4.5-150600.13.19.1 | Mar 29, 2023 | libavcodec/pthread_frame.c in FFmpeg before 5.1.2, as used in VLC and other products, leaves stale hwaccel state in worker threads, which allows attackers to trigger a use-after-free and execute arbitrary code in some circumstances (e.g., hardware re-initialization upon a mid-vid | ||
| CVE-2020-22046 | — | < 4.4.5-150600.13.19.1 | 4.4.5-150600.13.19.1 | Jun 2, 2021 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c. | ||
| CVE-2020-22021 | — | < 4.4-150600.13.5.1 | 4.4-150600.13.5.1 | May 26, 2021 | Buffer Overflow vulnerability in FFmpeg 4.2 at filter_edges function in libavfilter/vf_yadif.c, which could let a remote malicious user cause a Denial of Service. |
- CVE-2024-31578Apr 17, 2024affected < 4.4.5-150600.13.16.1fixed 4.4.5-150600.13.16.1
FFmpeg version n6.1.1 was discovered to contain a heap use-after-free via the av_hwframe_ctx_init function.
- CVE-2022-48434Mar 29, 2023affected < 4.4.5-150600.13.19.1fixed 4.4.5-150600.13.19.1
libavcodec/pthread_frame.c in FFmpeg before 5.1.2, as used in VLC and other products, leaves stale hwaccel state in worker threads, which allows attackers to trigger a use-after-free and execute arbitrary code in some circumstances (e.g., hardware re-initialization upon a mid-vid
- CVE-2020-22046Jun 2, 2021affected < 4.4.5-150600.13.19.1fixed 4.4.5-150600.13.19.1
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c.
- CVE-2020-22021May 26, 2021affected < 4.4-150600.13.5.1fixed 4.4-150600.13.5.1
Buffer Overflow vulnerability in FFmpeg 4.2 at filter_edges function in libavfilter/vf_yadif.c, which could let a remote malicious user cause a Denial of Service.
Page 2 of 2