Oval Definition:	oval:org.opensuse.security:def:65239
Revision Date: 2021-09-02 Version: 1 Title: Security update for ffmpeg (Important) Description: This update for ffmpeg fixes the following issues: - CVE-2019-9721: Fix denial of service in the subtitle decoder in handle_open_brace from libavcodec/htmlsubtitles.c (bsc#1129714). - CVE-2020-22046: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c (bsc#1186849). - CVE-2020-22048: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c (bsc#1186859). - CVE-2020-22049: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c (bsc#1186861). - CVE-2020-22054: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c (bsc#1186863). - CVE-2020-21688: Fixed a heap-use-after-free in the av_freep function in libavutil/mem.c (bsc#1189348). - CVE-2020-21697: Fixed a heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c (bsc#1189350). - CVE-2021-38114: Fixed a not checked return value of the init_vlc function (bsc#1189142). Family: unix Class: patch Status: Reference(s): 1129714 1129991 1152763 1153921 1177406 1178291 1186849 1186859 1186861 1186863 1189142 1189348 1189350 CVE-2019-3695 CVE-2019-3696 CVE-2019-9721 CVE-2020-21688 CVE-2020-21697 CVE-2020-22046 CVE-2020-22048 CVE-2020-22049 CVE-2020-22054 CVE-2020-26575 CVE-2020-28030 CVE-2021-38114 SUSE-SU-2020:0355-1 SUSE-SU-2020:3376-1 SUSE-SU-2021:2919-1 Platform(s): SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information wireshark-3.2.8-3.44 is installed OR wireshark-devel-3.2.8-3.44 is installed OR wireshark-ui-qt-3.2.8-3.44 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information libpcp-devel-4.3.1-3.5 is installed OR libpcp3-4.3.1-3.5 is installed OR libpcp_gui2-4.3.1-3.5 is installed OR libpcp_import1-4.3.1-3.5 is installed OR libpcp_mmv1-4.3.1-3.5 is installed OR libpcp_trace2-4.3.1-3.5 is installed OR libpcp_web1-4.3.1-3.5 is installed OR pcp-4.3.1-3.5 is installed OR pcp-conf-4.3.1-3.5 is installed OR pcp-devel-4.3.1-3.5 is installed OR pcp-doc-4.3.1-3.5 is installed OR pcp-import-iostat2pcp-4.3.1-3.5 is installed OR pcp-import-mrtg2pcp-4.3.1-3.5 is installed OR pcp-import-sar2pcp-4.3.1-3.5 is installed OR pcp-pmda-perfevent-4.3.1-3.5 is installed OR pcp-system-tools-4.3.1-3.5 is installed OR perl-PCP-LogImport-4.3.1-3.5 is installed OR perl-PCP-LogSummary-4.3.1-3.5 is installed OR perl-PCP-MMV-4.3.1-3.5 is installed OR perl-PCP-PMDA-4.3.1-3.5 is installed OR python3-pcp-4.3.1-3.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed AND Package Information libavcodec57-3.4.2-11.8.2 is installed OR libavformat57-3.4.2-11.8.2 is installed OR libavresample-devel-3.4.2-11.8.2 is installed OR libavresample3-3.4.2-11.8.2 is installed OR libavresample3-32bit-3.4.2-11.8.2 is installed OR libavutil-devel-3.4.2-11.8.2 is installed OR libavutil55-3.4.2-11.8.2 is installed OR libpostproc-devel-3.4.2-11.8.2 is installed OR libpostproc54-3.4.2-11.8.2 is installed OR libswresample-devel-3.4.2-11.8.2 is installed OR libswresample2-3.4.2-11.8.2 is installed OR libswscale-devel-3.4.2-11.8.2 is installed OR libswscale4-3.4.2-11.8.2 is installed
BACK