Oval Definition:oval:org.opensuse.security:def:1479
Revision Date:2021-09-02Version:1
Title:Security update for ffmpeg (Important)
Description:

This update for ffmpeg fixes the following issues:

- CVE-2019-9721: Fix denial of service in the subtitle decoder in handle_open_brace from libavcodec/htmlsubtitles.c (bsc#1129714). - CVE-2020-22046: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c (bsc#1186849). - CVE-2020-22048: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c (bsc#1186859). - CVE-2020-22049: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c (bsc#1186861). - CVE-2020-22054: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c (bsc#1186863). - CVE-2020-21688: Fixed a heap-use-after-free in the av_freep function in libavutil/mem.c (bsc#1189348). - CVE-2020-21697: Fixed a heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c (bsc#1189350). - CVE-2021-38114: Fixed a not checked return value of the init_vlc function (bsc#1189142).
Family:unixClass:patch
Status:Reference(s):1086777
1129714
1186849
1186859
1186861
1186863
1189142
1189348
1189350
CVE-2016-3698
CVE-2018-10903
CVE-2018-8975
CVE-2018-8975
CVE-2019-9721
CVE-2020-21688
CVE-2020-21697
CVE-2020-22046
CVE-2020-22048
CVE-2020-22049
CVE-2020-22054
CVE-2021-38114
SUSE-SU-2019:0855-1
SUSE-SU-2021:2919-1
Platform(s):SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15 SP1
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for CAP 15
SUSE Linux Enterprise Module for Containers 15
SUSE Linux Enterprise Module for Containers 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Package Hub 15 SP3
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Python2 packages 15 SP1
SUSE Linux Enterprise Module for Realtime packages 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Storage 6
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • mozilla-nspr-4.10.7-1 is installed
  • OR mozilla-nspr-32bit-4.10.7-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • avahi-0.6.31-20 is installed
  • OR avahi-lang-0.6.31-20 is installed
  • OR libavahi-client3-0.6.31-20 is installed
  • OR libavahi-client3-32bit-0.6.31-20 is installed
  • OR libavahi-common3-0.6.31-20 is installed
  • OR libavahi-common3-32bit-0.6.31-20 is installed
  • OR libavahi-core7-0.6.31-20 is installed
  • OR libdns_sd-0.6.31-20 is installed
  • OR libdns_sd-32bit-0.6.31-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • NetworkManager-1.0.12-8 is installed
  • OR NetworkManager-lang-1.0.12-8 is installed
  • OR libnm-glib-vpn1-1.0.12-8 is installed
  • OR libnm-glib4-1.0.12-8 is installed
  • OR libnm-util2-1.0.12-8 is installed
  • OR libnm0-1.0.12-8 is installed
  • OR typelib-1_0-NM-1_0-1.0.12-8 is installed
  • OR typelib-1_0-NMClient-1_0-1.0.12-8 is installed
  • OR typelib-1_0-NetworkManager-1_0-1.0.12-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • MozillaFirefox-52.2.0esr-108 is installed
  • OR MozillaFirefox-translations-52.2.0esr-108 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • libndp-devel-1.6-1.26 is installed
  • OR libndp0-1.6-1.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 is installed
  • AND Package Information
  • libnetpbm11-10.80.1-3.3 is installed
  • OR netpbm-10.80.1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • libipa_hbac-devel-1.16.1-3.24 is installed
  • OR libipa_hbac0-1.16.1-3.24 is installed
  • OR libsss_certmap-devel-1.16.1-3.24 is installed
  • OR libsss_certmap0-1.16.1-3.24 is installed
  • OR libsss_idmap-devel-1.16.1-3.24 is installed
  • OR libsss_idmap0-1.16.1-3.24 is installed
  • OR libsss_nss_idmap-devel-1.16.1-3.24 is installed
  • OR libsss_nss_idmap0-1.16.1-3.24 is installed
  • OR libsss_simpleifp-devel-1.16.1-3.24 is installed
  • OR libsss_simpleifp0-1.16.1-3.24 is installed
  • OR python3-sssd-config-1.16.1-3.24 is installed
  • OR sssd-1.16.1-3.24 is installed
  • OR sssd-ad-1.16.1-3.24 is installed
  • OR sssd-dbus-1.16.1-3.24 is installed
  • OR sssd-ipa-1.16.1-3.24 is installed
  • OR sssd-krb5-1.16.1-3.24 is installed
  • OR sssd-krb5-common-1.16.1-3.24 is installed
  • OR sssd-ldap-1.16.1-3.24 is installed
  • OR sssd-proxy-1.16.1-3.24 is installed
  • OR sssd-tools-1.16.1-3.24 is installed
  • OR sssd-wbclient-1.16.1-3.24 is installed
  • OR sssd-wbclient-devel-1.16.1-3.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for CAP 15 is installed
  • AND cf-cli-6.43.0-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 is installed
  • AND Package Information
  • containerd-1.2.5-5.13 is installed
  • OR docker-18.09.6_ce-6.17 is installed
  • OR docker-bash-completion-18.09.6_ce-6.17 is installed
  • OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
  • OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed
  • OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • AND Package Information
  • docker-18.09.6_ce-6.20 is installed
  • OR docker-bash-completion-18.09.6_ce-6.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • cairo-1.15.10-4.5 is installed
  • OR libcairo2-32bit-1.15.10-4.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND Package Information
  • rpm-4.14.1-10.3 is installed
  • OR rpm-build-4.14.1-10.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Package Hub 15 SP3 is installed
  • AND Package Information
  • ffmpeg-3.4.2-11.8.2 is installed
  • OR libavdevice57-3.4.2-11.8.2 is installed
  • OR libavfilter6-3.4.2-11.8.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND Package Information
  • python-paramiko-2.4.2-3.3 is installed
  • OR python3-paramiko-2.4.2-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed
  • AND python2-cryptography-2.1.4-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Realtime packages 15 SP1 is installed
  • AND Package Information
  • cluster-md-kmp-rt-4.12.14-14.11 is installed
  • OR dlm-kmp-rt-4.12.14-14.11 is installed
  • OR gfs2-kmp-rt-4.12.14-14.11 is installed
  • OR kernel-devel-rt-4.12.14-14.11 is installed
  • OR kernel-rt-4.12.14-14.11 is installed
  • OR kernel-rt-base-4.12.14-14.11 is installed
  • OR kernel-rt-devel-4.12.14-14.11 is installed
  • OR kernel-rt_debug-4.12.14-14.11 is installed
  • OR kernel-rt_debug-devel-4.12.14-14.11 is installed
  • OR kernel-source-rt-4.12.14-14.11 is installed
  • OR kernel-syms-rt-4.12.14-14.11 is installed
  • OR ocfs2-kmp-rt-4.12.14-14.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • dpdk-17.11.2-3.2 is installed
  • OR dpdk-devel-17.11.2-3.2 is installed
  • OR dpdk-kmp-default-17.11.2_k4.12.14_23-3.2 is installed
  • OR dpdk-thunderx-17.11.2-3.2 is installed
  • OR dpdk-thunderx-devel-17.11.2-3.2 is installed
  • OR dpdk-thunderx-kmp-default-17.11.2_k4.12.14_23-3.2 is installed
  • OR dpdk-tools-17.11.2-3.2 is installed
  • OR libdpdk-17_11-0-17.11.2-3.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • gpgme-1.5.1-1 is installed
  • OR libgpgme11-1.5.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libjpeg-turbo-1.3.1-30.3 is installed
  • OR libjpeg62-62.1.0-30.1 is installed
  • OR libjpeg62-32bit-62.1.0-30.1 is installed
  • OR libjpeg62-turbo-1.3.1-30.1 is installed
  • OR libjpeg8-8.0.2-30.3 is installed
  • OR libjpeg8-32bit-8.0.2-30.3 is installed
  • OR libturbojpeg0-8.0.2-30.3 is installed
    • BACK