Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 5748-1] ffmpeg security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5748-1] ffmpeg security update


Chronologisch Thread  
    < Chronologisch >       < Thread >
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 5748-1] ffmpeg security update
  • Date: Wed, 14 Aug 2024 11:06:47 +0000
  • List-archive: https://lists.debian.org/msgid-search/ZryPx5IYgEFrCqi3 AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From:Date :Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=hnXnp9H/mXMHKALXzHaMaOymM8fDbyvkrcsOq9tH8YU=; b=Ap 8Bf69Uyf3nARwjV8nc2oetPJIsn4DdWOXqZEsYm3FDhThaq867gd5B64JaSKRnp4s0yqUxu9yFuC1 FrL3u2gow8blUOiYo02bp38vK+mni+z6l9bSr989c7R1eYTzHcvH8gtyVcS+sBDZ9EmZIVV09oQrI ASmcUn9rbSeAuLrMvTHh6ZSyJSWiIywpkPiTNnOWqdh6QGxyaIk1epKp5MSGWpdkVIB47tbTN8zsh /lpfzUFjxlKrrcz8xFPdV7U483GStN4ak4zrZmSyob2GUvPbu3hBRib6/77wkVzSTE6Fk8aqohtWu zphGe1k6VUd6h0YSfzH2cWjExjgKDtVg==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Wed, 14 Aug 2024 11:07:06 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <sdEeDx4rTjG.A.LcrP.a_IvmB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5748-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
August 14, 2024 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : ffmpeg
CVE ID : CVE-2024-7055 CVE-2024-7272

Several vulnerabilities have been discovered in the FFmpeg multimedia
framework, which could result in denial of service or potentially the
execution of arbitrary code if malformed files/streams are processed.

For the stable distribution (bookworm), these problems have been fixed in
version 7:5.1.6-0+deb12u1.

We recommend that you upgrade your ffmpeg packages.

For the detailed security status of ffmpeg please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/ffmpeg

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=3v1M
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 5748-1] ffmpeg security update, Moritz Muehlenhoff, 14.08.2024

Archiv bereitgestellt durch MHonArc 2.6.19+.

Seitenanfang