Mailinglist Archive: opensuse-updates (131 mails)

< Previous Next >
openSUSE-SU-2016:2934-1: moderate: Security update for ffmpeg
openSUSE Security Update: Security update for ffmpeg
______________________________________________________________________________

Announcement ID: openSUSE-SU-2016:2934-1
Rating: moderate
References: #1009892
Cross-References: CVE-2016-5199
Affected Products:
openSUSE Leap 42.2
______________________________________________________________________________

An update that fixes one vulnerability is now available.

Description:

This update to ffmpeg 3.2 fixes the following issues:

- CVE-2016-5199: Heap corruption in FFmpeg (boo#1009892)

FFmpeg was updated to version 3.2, incorporating the following upstream
improvements:

- SDL2 output device and ffplay support
- SDL1 output device and SDL1 support removed
- New: libopenmpt demuxer, fifo muxer, True Audio (TTA) muxer
- New filters: weave, gblur, avgblur, sobel, prewitt, vaguedenoiser,
yuvtestsrc, lut2, hysteresis, maskedclamp, crystalizer, acrusher,
bitplanenoise, sidedata, asidedata
- Non-Local Means (nlmeans) denoising filter
- 16-bit support in curves filter and selectivecolor filter
- Added threads option per filter instance
- The "curves" filter does not automatically insert points at x=0 and x=1
anymore
- Matroska muxer now writes CRC32 elements by default in all Level 1
elements
- New "tee" protocol
- VP8 in Ogg muxing
- Floating point support in ALS decoder
- Extended mov edit list support
- Changed mapping of RTP MIME type G726 to codec g726le.

Also contains a collection of upstream bug fixes.


Patch Instructions:

To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:

- openSUSE Leap 42.2:

zypper in -t patch openSUSE-2016-1365=1

To bring your system up-to-date, use "zypper patch".


Package List:

- openSUSE Leap 42.2 (i586 x86_64):

ffmpeg-3.2-4.1
ffmpeg-debuginfo-3.2-4.1
ffmpeg-debugsource-3.2-4.1
libavcodec-devel-3.2-4.1
libavcodec57-3.2-4.1
libavcodec57-debuginfo-3.2-4.1
libavdevice-devel-3.2-4.1
libavdevice57-3.2-4.1
libavdevice57-debuginfo-3.2-4.1
libavfilter-devel-3.2-4.1
libavfilter6-3.2-4.1
libavfilter6-debuginfo-3.2-4.1
libavformat-devel-3.2-4.1
libavformat57-3.2-4.1
libavformat57-debuginfo-3.2-4.1
libavresample-devel-3.2-4.1
libavresample3-3.2-4.1
libavresample3-debuginfo-3.2-4.1
libavutil-devel-3.2-4.1
libavutil55-3.2-4.1
libavutil55-debuginfo-3.2-4.1
libpostproc-devel-3.2-4.1
libpostproc54-3.2-4.1
libpostproc54-debuginfo-3.2-4.1
libswresample-devel-3.2-4.1
libswresample2-3.2-4.1
libswresample2-debuginfo-3.2-4.1
libswscale-devel-3.2-4.1
libswscale4-3.2-4.1
libswscale4-debuginfo-3.2-4.1

- openSUSE Leap 42.2 (x86_64):

libavcodec57-32bit-3.2-4.1
libavcodec57-debuginfo-32bit-3.2-4.1
libavdevice57-32bit-3.2-4.1
libavdevice57-debuginfo-32bit-3.2-4.1
libavfilter6-32bit-3.2-4.1
libavfilter6-debuginfo-32bit-3.2-4.1
libavformat57-32bit-3.2-4.1
libavformat57-debuginfo-32bit-3.2-4.1
libavresample3-32bit-3.2-4.1
libavresample3-debuginfo-32bit-3.2-4.1
libavutil55-32bit-3.2-4.1
libavutil55-debuginfo-32bit-3.2-4.1
libpostproc54-32bit-3.2-4.1
libpostproc54-debuginfo-32bit-3.2-4.1
libswresample2-32bit-3.2-4.1
libswresample2-debuginfo-32bit-3.2-4.1
libswscale4-32bit-3.2-4.1
libswscale4-debuginfo-32bit-3.2-4.1


References:

https://www.suse.com/security/cve/CVE-2016-5199.html
https://bugzilla.suse.com/1009892


< Previous Next >
This Thread
  • No further messages