New Debian ffmpeg 7:3.2.16-1+deb9u1 fixes: This update addresses the following issues: * FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/lpc.h, which allows a remote malicious user to cause a Denial of Service. (CVE-2020-20445) * FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aacpsy.c, which allows a remote malicious user to cause a Denial of Service. (CVE-2020-20446) * Denial of Service issue in FFmpeg 4.2 due to resource management errors via fftools/cmdutils.c. (CVE-2020-20451) * FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aaccoder, which allows a remote malicious user to cause a Denial of Service (CVE-2020-20453) * A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in avcodec_alloc_context3 at options.c. (CVE-2020-22037) * A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_buffersrc_add_frame_flags function in buffersrc. (CVE-2020-22041) * A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the url_open_dyn_buf_internal function in libavformat/aviobuf.c. (CVE-2020-22044) * A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c. (CVE-2020-22046) * A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c. (CVE-2020-22048) * A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c. (CVE-2020-22049) * A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c. (CVE-2020-22054) * adts_decode_extradata in libavformat/adtsenc.c in FFmpeg 4.4 does not check the init_get_bits return value, which is a necessary step because the second argument to init_get_bits can be crafted. (CVE-2021-38171) * FFmpeg version (git commit de8e6e67e7523e48bb27ac224a0b446df05e1640) suffers from a an assertion failure at src/libavutil/mathematics.c. (CVE-2021-38291)
--- mirror/ftp/4.4/unmaintained/component/4.4-8-errata/source/ffmpeg_3.2.15-0+deb9u4.dsc +++ apt/ucs_4.4-0-errata4.4-8/source/ffmpeg_3.2.16-1+deb9u1.dsc @@ -1,3 +1,38 @@ +7:3.2.16-1+deb9u1 [Fri, 12 Nov 2021 19:27:15 +0100] Anton Gladky <gladk@debian.org>: + + * Non-maintainer upload by the LTS Security Team. + * [23aefd3] New upstream version 3.2.16. Following CVEs are fixed: + CVE-2021-38291 - assertion failure at src/libavutil/mathematics.c + CVE-2020-22054 - A Denial of Service vulnerability due to a memory + leak in the av_dict_set function in dict.c. + CVE-2020-22049 - A Denial of Service vulnerability due to a memory + leak in the wtvfile_open_sector function in wtvdec.c. + CVE-2020-22037 - A Denial of Service vulnerability due to a memory + leak in avcodec_alloc_context3 at options.c + CVE-2020-20453 - Divide By Zero issue via libavcodec/aaccoder, which + allows a remote malicious user to cause a Denial of + Service. + CVE-2020-20446 - Divide By Zero issue via libavcodec/aacpsy.c, which + allows a remote malicious user to cause a Denial of + Service. + CVE-2020-20445 - Divide By Zero issue via libavcodec/lpc.h, which + allows a remote malicious user to cause a Denial of + Service. + * [00f277b] CVE-2020-22048 - A Denial of Service vulnerability due to a + memory leak in the ff_frame_pool_get function in + framepool.c. + * [07e4324] CVE-2020-22046 - A Denial of Service vulnerability due to a + memory leak in the avpriv_float_dsp_allocl function + in libavutil/float_dsp.c. + * [9f66aa6] CVE-2020-22044 - A Denial of Service vulnerability due to a + memory leak in the url_open_dyn_buf_internal function + in libavformat/aviobuf.c. + * [93dcb1b] CVE-2020-22041 - A Denial of Service vulnerability due to a + memory leak in the av_buffersrc_add_frame_flags function + in buffersrc. + * [c8769d4] CVE-2020-20451 - Denial of Service issue due to resource + management errors via fftools/cmdutils.c. + 7:3.2.15-0+deb9u4 [Sun, 22 Aug 2021 21:57:52 +0200] Anton Gladky <gladk@debian.org>: * Non-maintainer upload by the LTS Security Team. <http://piuparts.knut.univention.de/4.4-8/#4814459529520106163>
OK: yaml OK: announce_errata OK: patch OK: piuparts [4.4-8] e12682ff82 Bug #54057: ffmpeg 7:3.2.16-1+deb9u1 doc/errata/staging/ffmpeg.yaml | 57 ++++++++++++++++++------------------------ 1 file changed, 25 insertions(+), 32 deletions(-) [4.4-8] 227b76cb58 Bug #54057: ffmpeg 7:3.2.16-1+deb9u1 doc/errata/staging/ffmpeg.yaml | 56 ++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 56 insertions(+)
<https://errata.software-univention.de/#/?erratum=4.4x1097>