openSUSE-SU-2025:14834-1: moderate: ffmpeg-7-7.1-3.1 on GA media

26 Feb 2025

      # ffmpeg-7-7.1-3.1 on GA media

Announcement ID: openSUSE-SU-2025:14834-1
Rating: moderate

Cross-References:

  * CVE-2024-12361
  * CVE-2024-35365
  * CVE-2024-36613
  * CVE-2025-0518
  * CVE-2025-22919
  * CVE-2025-22920
  * CVE-2025-22921
  * CVE-2025-25473

CVSS scores:

  * CVE-2024-12361 ( SUSE ): 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
  * CVE-2024-12361 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
  * CVE-2024-35365 ( SUSE ): 4.6 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L
  * CVE-2024-35365 ( SUSE ): 2 CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:A/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
  * CVE-2024-36613 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:L
  * CVE-2024-36613 ( SUSE ): 4.8 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N
  * CVE-2025-0518 ( SUSE ): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
  * CVE-2025-22919 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
  * CVE-2025-22919 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
  * CVE-2025-22920 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
  * CVE-2025-22920 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
  * CVE-2025-22921 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
  * CVE-2025-22921 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N
  * CVE-2025-25473 ( SUSE ): 0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:N
  * CVE-2025-25473 ( SUSE ): 0 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N

Affected Products:

  * openSUSE Tumbleweed

An update that solves 8 vulnerabilities can now be installed.

## Description:

These are all security issues fixed in the ffmpeg-7-7.1-3.1 package on the GA media of openSUSE Tumbleweed.

## Package List:

  * openSUSE Tumbleweed:
    * ffmpeg-7 7.1-3.1
    * ffmpeg-7-libavcodec-devel 7.1-3.1
    * ffmpeg-7-libavdevice-devel 7.1-3.1
    * ffmpeg-7-libavfilter-devel 7.1-3.1
    * ffmpeg-7-libavformat-devel 7.1-3.1
    * ffmpeg-7-libavutil-devel 7.1-3.1
    * ffmpeg-7-libpostproc-devel 7.1-3.1
    * ffmpeg-7-libswresample-devel 7.1-3.1
    * ffmpeg-7-libswscale-devel 7.1-3.1
    * libavcodec61 7.1-3.1
    * libavcodec61-32bit 7.1-3.1
    * libavdevice61 7.1-3.1
    * libavdevice61-32bit 7.1-3.1
    * libavfilter10 7.1-3.1
    * libavfilter10-32bit 7.1-3.1
    * libavformat61 7.1-3.1
    * libavformat61-32bit 7.1-3.1
    * libavutil59 7.1-3.1
    * libavutil59-32bit 7.1-3.1
    * libpostproc58 7.1-3.1
    * libpostproc58-32bit 7.1-3.1
    * libswresample5 7.1-3.1
    * libswresample5-32bit 7.1-3.1
    * libswscale8 7.1-3.1
    * libswscale8-32bit 7.1-3.1

## References:

  * https://www.suse.com/security/cve/CVE-2024-12361.html
  * https://www.suse.com/security/cve/CVE-2024-35365.html
  * https://www.suse.com/security/cve/CVE-2024-36613.html
  * https://www.suse.com/security/cve/CVE-2025-0518.html
  * https://www.suse.com/security/cve/CVE-2025-22919.html
  * https://www.suse.com/security/cve/CVE-2025-22920.html
  * https://www.suse.com/security/cve/CVE-2025-22921.html
  * https://www.suse.com/security/cve/CVE-2025-25473.html

Main

Development

Information

Community

Social Media

Other

meissner＠suse.com

tags

participants (1)