Oval Definition:oval:org.opensuse.security:def:202248434
Revision Date:2023-06-22Version:1
Title:CVE-2022-48434
Description:

libavcodec/pthread_frame.c in FFmpeg before 5.1.2, as used in VLC and other products, leaves stale hwaccel state in worker threads, which allows attackers to trigger a use-after-free and execute arbitrary code in some circumstances (e.g., hardware re-initialization upon a mid-video SPS change when Direct3D11 is used).
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2022-48434
SUSE CVE-2022-48434
SUSE-SU-2023:2087-1
SUSE-SU-2023:2108-1
SUSE-SU-2023:2115-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Module for Desktop Applications 15 SP5
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP5
SUSE Linux Enterprise Workstation Extension 15 SP5
Product(s):
Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • OR SUSE Linux Enterprise Workstation Extension 15 SP5 is installed
  • AND
  • libavcodec-devel is affected
  • OR libavformat-devel is affected
  • OR libavformat57 is affected
  • OR libavresample-devel is affected
  • OR libavresample3 is affected
  • OR libavcodec58_134 is affected
  • OR libavformat58_76 is affected
  • OR libavutil56_70 is affected
  • OR libswresample3_9 is affected
  • OR libswscale5_9 is affected
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND
  • libavcodec57-3.4.2-150200.11.28.1 is installed
  • OR libavutil-devel-3.4.2-150200.11.28.1 is installed
  • OR libavutil55-3.4.2-150200.11.28.1 is installed
  • OR libpostproc-devel-3.4.2-150200.11.28.1 is installed
  • OR libpostproc54-3.4.2-150200.11.28.1 is installed
  • OR libswresample-devel-3.4.2-150200.11.28.1 is installed
  • OR libswresample2-3.4.2-150200.11.28.1 is installed
  • OR libswscale-devel-3.4.2-150200.11.28.1 is installed
  • OR libswscale4-3.4.2-150200.11.28.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Desktop Applications 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND Package Information
  • libavcodec57-3.4.2-150200.11.28.1 is installed
  • OR libavutil-devel-3.4.2-150200.11.28.1 is installed
  • OR libavutil55-3.4.2-150200.11.28.1 is installed
  • OR libpostproc-devel-3.4.2-150200.11.28.1 is installed
  • OR libpostproc54-3.4.2-150200.11.28.1 is installed
  • OR libswresample-devel-3.4.2-150200.11.28.1 is installed
  • OR libswresample2-3.4.2-150200.11.28.1 is installed
  • OR libswscale-devel-3.4.2-150200.11.28.1 is installed
  • OR libswscale4-3.4.2-150200.11.28.1 is installed
    • BACK