Oval Definition:oval:org.opensuse.security:def:1028
Revision Date:2021-09-02Version:1
Title:Security update for ffmpeg (Important)
Description:

This update for ffmpeg fixes the following issues:

- CVE-2019-9721: Fix denial of service in the subtitle decoder in handle_open_brace from libavcodec/htmlsubtitles.c (bsc#1129714). - CVE-2020-22046: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c (bsc#1186849). - CVE-2020-22048: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c (bsc#1186859). - CVE-2020-22049: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c (bsc#1186861). - CVE-2020-22054: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c (bsc#1186863). - CVE-2020-21688: Fixed a heap-use-after-free in the av_freep function in libavutil/mem.c (bsc#1189348). - CVE-2020-21697: Fixed a heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c (bsc#1189350). - CVE-2021-38114: Fixed a not checked return value of the init_vlc function (bsc#1189142).
Family:unixClass:patch
Status:Reference(s):1129714
1186849
1186859
1186861
1186863
1189142
1189348
1189350
CVE-2013-4566
CVE-2013-4566
CVE-2014-3467
CVE-2014-3468
CVE-2014-3469
CVE-2014-3566
CVE-2014-3566
CVE-2015-0295
CVE-2015-2806
CVE-2015-3622
CVE-2015-5244
CVE-2015-5244
CVE-2016-3099
CVE-2016-3099
CVE-2016-4008
CVE-2018-6003
CVE-2019-9721
CVE-2020-0569
CVE-2020-0570
CVE-2020-13962
CVE-2020-17507
CVE-2020-21688
CVE-2020-21697
CVE-2020-22046
CVE-2020-22048
CVE-2020-22049
CVE-2020-22054
CVE-2021-38114
SUSE-SU-2021:2919-1
Platform(s):openSUSE 13.2
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Desktop Applications 15 SP3
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Storage 7.1
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 15
SUSE Manager Proxy 4.2
SUSE Manager Retail Branch Server 4.2
SUSE Manager Server 4.2
SUSE Package Hub for SUSE Linux Enterprise 15
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND Package Information
  • openstack-neutron-2014.2.2.dev26-3 is installed
  • OR openstack-neutron-dhcp-agent-2014.2.2.dev26-3 is installed
  • OR openstack-neutron-ha-tool-2014.2.2.dev26-3 is installed
  • OR openstack-neutron-l3-agent-2014.2.2.dev26-3 is installed
  • OR openstack-neutron-lbaas-agent-2014.2.2.dev26-3 is installed
  • OR openstack-neutron-linuxbridge-agent-2014.2.2.dev26-3 is installed
  • OR openstack-neutron-metadata-agent-2014.2.2.dev26-3 is installed
  • OR openstack-neutron-metering-agent-2014.2.2.dev26-3 is installed
  • OR openstack-neutron-openvswitch-agent-2014.2.2.dev26-3 is installed
  • OR openstack-neutron-vpn-agent-2014.2.2.dev26-3 is installed
  • OR python-neutron-2014.2.2.dev26-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND argyllcms-1.6.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-9 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libsystemd0-228-142 is installed
  • OR libsystemd0-32bit-228-142 is installed
  • OR libudev1-228-142 is installed
  • OR libudev1-32bit-228-142 is installed
  • OR systemd-228-142 is installed
  • OR systemd-32bit-228-142 is installed
  • OR systemd-bash-completion-228-142 is installed
  • OR systemd-sysvinit-228-142 is installed
  • OR udev-228-142 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • AND Package Information
  • libQt5Concurrent-devel-5.12.7-4.12.2 is installed
  • OR libQt5Concurrent5-5.12.7-4.12.2 is installed
  • OR libQt5Core-devel-5.12.7-4.12.2 is installed
  • OR libQt5Core-private-headers-devel-5.12.7-4.12.2 is installed
  • OR libQt5Core5-5.12.7-4.12.2 is installed
  • OR libQt5DBus-devel-5.12.7-4.12.2 is installed
  • OR libQt5DBus-private-headers-devel-5.12.7-4.12.2 is installed
  • OR libQt5DBus5-5.12.7-4.12.2 is installed
  • OR libQt5Gui-devel-5.12.7-4.12.2 is installed
  • OR libQt5Gui-private-headers-devel-5.12.7-4.12.2 is installed
  • OR libQt5Gui5-5.12.7-4.12.2 is installed
  • OR libQt5KmsSupport-devel-static-5.12.7-4.12.2 is installed
  • OR libQt5KmsSupport-private-headers-devel-5.12.7-4.12.2 is installed
  • OR libQt5Network-devel-5.12.7-4.12.2 is installed
  • OR libQt5Network-private-headers-devel-5.12.7-4.12.2 is installed
  • OR libQt5Network5-5.12.7-4.12.2 is installed
  • OR libQt5OpenGL-devel-5.12.7-4.12.2 is installed
  • OR libQt5OpenGL-private-headers-devel-5.12.7-4.12.2 is installed
  • OR libQt5OpenGL5-5.12.7-4.12.2 is installed
  • OR libQt5PlatformHeaders-devel-5.12.7-4.12.2 is installed
  • OR libQt5PlatformSupport-devel-static-5.12.7-4.12.2 is installed
  • OR libQt5PlatformSupport-private-headers-devel-5.12.7-4.12.2 is installed
  • OR libQt5PrintSupport-devel-5.12.7-4.12.2 is installed
  • OR libQt5PrintSupport-private-headers-devel-5.12.7-4.12.2 is installed
  • OR libQt5PrintSupport5-5.12.7-4.12.2 is installed
  • OR libQt5Sql-devel-5.12.7-4.12.2 is installed
  • OR libQt5Sql-private-headers-devel-5.12.7-4.12.2 is installed
  • OR libQt5Sql5-5.12.7-4.12.2 is installed
  • OR libQt5Sql5-sqlite-5.12.7-4.12.2 is installed
  • OR libQt5Test-devel-5.12.7-4.12.2 is installed
  • OR libQt5Test-private-headers-devel-5.12.7-4.12.2 is installed
  • OR libQt5Test5-5.12.7-4.12.2 is installed
  • OR libQt5Widgets-devel-5.12.7-4.12.2 is installed
  • OR libQt5Widgets-private-headers-devel-5.12.7-4.12.2 is installed
  • OR libQt5Widgets5-5.12.7-4.12.2 is installed
  • OR libQt5Xml-devel-5.12.7-4.12.2 is installed
  • OR libQt5Xml5-5.12.7-4.12.2 is installed
  • OR libqt5-qtbase-common-devel-5.12.7-4.12.2 is installed
  • OR libqt5-qtbase-devel-5.12.7-4.12.2 is installed
  • OR libqt5-qtbase-private-headers-devel-5.12.7-4.12.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND Package Information
  • libavcodec57-3.4.2-11.8.2 is installed
  • OR libavformat57-3.4.2-11.8.2 is installed
  • OR libavresample-devel-3.4.2-11.8.2 is installed
  • OR libavresample3-3.4.2-11.8.2 is installed
  • OR libavresample3-64bit-3.4.2-11.8.2 is installed
  • OR libavutil-devel-3.4.2-11.8.2 is installed
  • OR libavutil55-3.4.2-11.8.2 is installed
  • OR libpostproc-devel-3.4.2-11.8.2 is installed
  • OR libpostproc54-3.4.2-11.8.2 is installed
  • OR libswresample-devel-3.4.2-11.8.2 is installed
  • OR libswresample2-3.4.2-11.8.2 is installed
  • OR libswscale-devel-3.4.2-11.8.2 is installed
  • OR libswscale4-3.4.2-11.8.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • drbd-9.0.13+git.b83ade31-3.2 is installed
  • OR drbd-kmp-default-9.0.13+git.b83ade31_k4.12.14_23-3.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.191-3.13 is installed
  • OR java-1_8_0-openjdk-javadoc-1.8.0.191-3.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND libtasn1-6-32bit-4.13-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • python-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed
  • OR python2-numpy-gnu-hpc-1.14.0-4.5 is installed
  • OR python2-numpy-gnu-hpc-devel-1.14.0-4.5 is installed
  • OR python2-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed
  • OR python2-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed
  • OR python3-numpy-gnu-hpc-1.14.0-4.5 is installed
  • OR python3-numpy-gnu-hpc-devel-1.14.0-4.5 is installed
  • OR python3-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed
  • OR python3-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.15-3.3 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-3.3 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.15-3.3 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.6 is installed
  • OR kernel-default-livepatch-4.12.14-25.6 is installed
  • OR kernel-livepatch-4_12_14-25_6-default-1-1.3 is installed
  • OR kernel-livepatch-SLE15_Update_2-1-1.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • python-2.7.14-7.11 is installed
  • OR python-demo-2.7.14-7.11 is installed
  • OR python-doc-2.7.14-7.11 is installed
  • OR python-doc-pdf-2.7.14-7.11 is installed
  • OR python-idle-2.7.14-7.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • bzip2-1.0.6-5.3 is installed
  • OR bzip2-doc-1.0.6-5.3 is installed
  • OR libbz2-devel-32bit-1.0.6-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND Package Information
  • kernel-azure-4.12.14-5.13 is installed
  • OR kernel-azure-base-4.12.14-5.13 is installed
  • OR kernel-azure-devel-4.12.14-5.13 is installed
  • OR kernel-devel-azure-4.12.14-5.13 is installed
  • OR kernel-source-azure-4.12.14-5.13 is installed
  • OR kernel-syms-azure-4.12.14-5.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • rsyslog-8.33.1-3.3 is installed
  • OR rsyslog-module-gssapi-8.33.1-3.3 is installed
  • OR rsyslog-module-mysql-8.33.1-3.3 is installed
  • OR rsyslog-module-pgsql-8.33.1-3.3 is installed
  • OR rsyslog-module-relp-8.33.1-3.3 is installed
  • OR rsyslog-module-snmp-8.33.1-3.3 is installed
  • OR rsyslog-module-udpspoof-8.33.1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND apache2-mod_nss-1.0.17-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • tigervnc-1.3.0-17.3 is installed
  • OR xorg-x11-Xvnc-1.3.0-17.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-38.4.0esr-51.1 is installed
  • OR MozillaFirefox-translations-38.4.0esr-51.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND p7zip-9.20.1-6.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.3 is installed
  • OR kernel-default-extra-4.12.14-25.3 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 15 is installed
  • AND jhead-3.00-bp150.3.3 is installed
    • BACK