rpm package
suse/ffmpeg&distro=SUSE Manager Server 4.0
pkg:rpm/suse/ffmpeg&distro=SUSE%20Manager%20Server%204.0
Vulnerabilities (31)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-21688 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | Aug 10, 2021 | A heap-use-after-free in the av_freep function in libavutil/mem.c of FFmpeg 4.2 allows attackers to execute arbitrary code. | ||
| CVE-2020-21697 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | Aug 10, 2021 | A heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service (DOS) via a crafted avi file. | ||
| CVE-2021-38114 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | Aug 4, 2021 | libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868. | ||
| CVE-2020-22054 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | Jun 2, 2021 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c. | ||
| CVE-2020-22049 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | Jun 2, 2021 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c. | ||
| CVE-2020-22048 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | Jun 2, 2021 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c. | ||
| CVE-2020-22046 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | Jun 2, 2021 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c. | ||
| CVE-2020-22044 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | Jun 1, 2021 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the url_open_dyn_buf_internal function in libavformat/aviobuf.c. | ||
| CVE-2020-22043 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | Jun 1, 2021 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak at the fifo_alloc_common function in libavutil/fifo.c. | ||
| CVE-2020-22039 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | Jun 1, 2021 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the inavi_add_ientry function. | ||
| CVE-2020-22038 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | Jun 1, 2021 | A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_v4l2_m2m_create_context function in v4l2_m2m.c. | ||
| CVE-2020-22034 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | May 27, 2021 | A heap-based Buffer Overflow vulnerability exists FFmpeg 4.2 at libavfilter/vf_floodfill.c, which might lead to memory corruption and other potential consequences. | ||
| CVE-2020-22033 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | May 27, 2021 | A heap-based Buffer Overflow Vulnerability exists FFmpeg 4.2 at libavfilter/vf_vmafmotion.c in convolution_y_8bit, which could let a remote malicious user cause a Denial of Service. | ||
| CVE-2020-22032 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | May 27, 2021 | A heap-based Buffer Overflow vulnerability exists FFmpeg 4.2 at libavfilter/vf_edgedetect.c in gaussian_blur, which might lead to memory corruption and other potential consequences. | ||
| CVE-2020-22016 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | May 27, 2021 | A heap-based Buffer Overflow vulnerability in FFmpeg 4.2 at libavcodec/get_bits.h when writing .mov files, which might lead to memory corruption and other potential consequences. | ||
| CVE-2020-22017 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | May 27, 2021 | A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at ff_fill_rectangle in libavfilter/drawutils.c, which might lead to memory corruption and other potential consequences. | ||
| CVE-2020-22022 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | May 27, 2021 | A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 in filter_frame at libavfilter/vf_fieldorder.c, which might lead to memory corruption and other potential consequences. | ||
| CVE-2020-22023 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | May 27, 2021 | A heap-based Buffer Overflow vulnerabililty exists in FFmpeg 4.2 in filter_frame at libavfilter/vf_bitplanenoise.c, which might lead to memory corruption and other potential consequences. | ||
| CVE-2020-22025 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | May 27, 2021 | A heap-based Buffer Overflow vulnerability exists in gaussian_blur at libavfilter/vf_edgedetect.c, which might lead to memory corruption and other potential consequences. | ||
| CVE-2020-22031 | — | < 3.4.2-4.34.2 | 3.4.2-4.34.2 | May 27, 2021 | A Heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at libavfilter/vf_w3fdif.c in filter16_complex_low, which might lead to memory corruption and other potential consequences. |
- CVE-2020-21688Aug 10, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A heap-use-after-free in the av_freep function in libavutil/mem.c of FFmpeg 4.2 allows attackers to execute arbitrary code.
- CVE-2020-21697Aug 10, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c of FFmpeg 4.2 allows to cause a denial of service (DOS) via a crafted avi file.
- CVE-2021-38114Aug 4, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
libavcodec/dnxhddec.c in FFmpeg 4.4 does not check the return value of the init_vlc function, a similar issue to CVE-2013-0868.
- CVE-2020-22054Jun 2, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c.
- CVE-2020-22049Jun 2, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c.
- CVE-2020-22048Jun 2, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c.
- CVE-2020-22046Jun 2, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c.
- CVE-2020-22044Jun 1, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the url_open_dyn_buf_internal function in libavformat/aviobuf.c.
- CVE-2020-22043Jun 1, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak at the fifo_alloc_common function in libavutil/fifo.c.
- CVE-2020-22039Jun 1, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the inavi_add_ientry function.
- CVE-2020-22038Jun 1, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_v4l2_m2m_create_context function in v4l2_m2m.c.
- CVE-2020-22034May 27, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A heap-based Buffer Overflow vulnerability exists FFmpeg 4.2 at libavfilter/vf_floodfill.c, which might lead to memory corruption and other potential consequences.
- CVE-2020-22033May 27, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A heap-based Buffer Overflow Vulnerability exists FFmpeg 4.2 at libavfilter/vf_vmafmotion.c in convolution_y_8bit, which could let a remote malicious user cause a Denial of Service.
- CVE-2020-22032May 27, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A heap-based Buffer Overflow vulnerability exists FFmpeg 4.2 at libavfilter/vf_edgedetect.c in gaussian_blur, which might lead to memory corruption and other potential consequences.
- CVE-2020-22016May 27, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A heap-based Buffer Overflow vulnerability in FFmpeg 4.2 at libavcodec/get_bits.h when writing .mov files, which might lead to memory corruption and other potential consequences.
- CVE-2020-22017May 27, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at ff_fill_rectangle in libavfilter/drawutils.c, which might lead to memory corruption and other potential consequences.
- CVE-2020-22022May 27, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 in filter_frame at libavfilter/vf_fieldorder.c, which might lead to memory corruption and other potential consequences.
- CVE-2020-22023May 27, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A heap-based Buffer Overflow vulnerabililty exists in FFmpeg 4.2 in filter_frame at libavfilter/vf_bitplanenoise.c, which might lead to memory corruption and other potential consequences.
- CVE-2020-22025May 27, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A heap-based Buffer Overflow vulnerability exists in gaussian_blur at libavfilter/vf_edgedetect.c, which might lead to memory corruption and other potential consequences.
- CVE-2020-22031May 27, 2021affected < 3.4.2-4.34.2fixed 3.4.2-4.34.2
A Heap-based Buffer Overflow vulnerability exists in FFmpeg 4.2 at libavfilter/vf_w3fdif.c in filter16_complex_low, which might lead to memory corruption and other potential consequences.
Page 1 of 2