openSUSE Build Service

Overview Details Repositories Revisions Requests Users Attributes Meta

Security update for ffmpeg

This update to ffmpeg 2.8.4 fixes the following issues:

* CVE-2015-8661: Denial of service via crafted .mov file [boo#960385]
* CVE-2015-8662: Denial of service via crafted JPEG 2000 data [boo#960384]
* CVE-2015-8663: Denial of service via crafted H.264 data [boo#960383]

Submitted by Jan Engelhardt (jengelh)

Fixed bugs

bnc#960383

VUL-0: CVE-2015-8663: ffmpeg: The ff_get_buffer function in libavcodec/utils.c in FFmpeg before 2.8.4preserves width and height v...

bnc#960384

VUL-0: CVE-2015-8662: ffmpeg: The ff_dwt_decode function in libavcodec/jpeg2000dwt.c in FFmpeg before 2.8.4does not validate the ...

bnc#960385

VUL-0: CVE-2015-8661: ffmpeg: The h264_slice_header_init function in libavcodec/h264_slice.c in FFmpeg before2.8.3 does not valid...

CVE-CVE-2015-8663

CVE-CVE-2015-8662

CVE-CVE-2015-8661

Places

Fixed bugs

Selected Binaries

Places