Mailinglist Archive: opensuse-updates (131 mails)
< Previous | Next > |
openSUSE-SU-2016:2934-1: moderate: Security update for ffmpeg
- From: opensuse-security@xxxxxxxxxxxx
- Date: Mon, 28 Nov 2016 22:06:55 +0100 (CET)
- Message-id: <20161128210655.9DBF6FFC0@maintenance.suse.de>
openSUSE Security Update: Security update for ffmpeg
______________________________________________________________________________
Announcement ID: openSUSE-SU-2016:2934-1
Rating: moderate
References: #1009892
Cross-References: CVE-2016-5199
Affected Products:
openSUSE Leap 42.2
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This update to ffmpeg 3.2 fixes the following issues:
- CVE-2016-5199: Heap corruption in FFmpeg (boo#1009892)
FFmpeg was updated to version 3.2, incorporating the following upstream
improvements:
- SDL2 output device and ffplay support
- SDL1 output device and SDL1 support removed
- New: libopenmpt demuxer, fifo muxer, True Audio (TTA) muxer
- New filters: weave, gblur, avgblur, sobel, prewitt, vaguedenoiser,
yuvtestsrc, lut2, hysteresis, maskedclamp, crystalizer, acrusher,
bitplanenoise, sidedata, asidedata
- Non-Local Means (nlmeans) denoising filter
- 16-bit support in curves filter and selectivecolor filter
- Added threads option per filter instance
- The "curves" filter does not automatically insert points at x=0 and x=1
anymore
- Matroska muxer now writes CRC32 elements by default in all Level 1
elements
- New "tee" protocol
- VP8 in Ogg muxing
- Floating point support in ALS decoder
- Extended mov edit list support
- Changed mapping of RTP MIME type G726 to codec g726le.
Also contains a collection of upstream bug fixes.
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE Leap 42.2:
zypper in -t patch openSUSE-2016-1365=1
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE Leap 42.2 (i586 x86_64):
ffmpeg-3.2-4.1
ffmpeg-debuginfo-3.2-4.1
ffmpeg-debugsource-3.2-4.1
libavcodec-devel-3.2-4.1
libavcodec57-3.2-4.1
libavcodec57-debuginfo-3.2-4.1
libavdevice-devel-3.2-4.1
libavdevice57-3.2-4.1
libavdevice57-debuginfo-3.2-4.1
libavfilter-devel-3.2-4.1
libavfilter6-3.2-4.1
libavfilter6-debuginfo-3.2-4.1
libavformat-devel-3.2-4.1
libavformat57-3.2-4.1
libavformat57-debuginfo-3.2-4.1
libavresample-devel-3.2-4.1
libavresample3-3.2-4.1
libavresample3-debuginfo-3.2-4.1
libavutil-devel-3.2-4.1
libavutil55-3.2-4.1
libavutil55-debuginfo-3.2-4.1
libpostproc-devel-3.2-4.1
libpostproc54-3.2-4.1
libpostproc54-debuginfo-3.2-4.1
libswresample-devel-3.2-4.1
libswresample2-3.2-4.1
libswresample2-debuginfo-3.2-4.1
libswscale-devel-3.2-4.1
libswscale4-3.2-4.1
libswscale4-debuginfo-3.2-4.1
- openSUSE Leap 42.2 (x86_64):
libavcodec57-32bit-3.2-4.1
libavcodec57-debuginfo-32bit-3.2-4.1
libavdevice57-32bit-3.2-4.1
libavdevice57-debuginfo-32bit-3.2-4.1
libavfilter6-32bit-3.2-4.1
libavfilter6-debuginfo-32bit-3.2-4.1
libavformat57-32bit-3.2-4.1
libavformat57-debuginfo-32bit-3.2-4.1
libavresample3-32bit-3.2-4.1
libavresample3-debuginfo-32bit-3.2-4.1
libavutil55-32bit-3.2-4.1
libavutil55-debuginfo-32bit-3.2-4.1
libpostproc54-32bit-3.2-4.1
libpostproc54-debuginfo-32bit-3.2-4.1
libswresample2-32bit-3.2-4.1
libswresample2-debuginfo-32bit-3.2-4.1
libswscale4-32bit-3.2-4.1
libswscale4-debuginfo-32bit-3.2-4.1
References:
https://www.suse.com/security/cve/CVE-2016-5199.html
https://bugzilla.suse.com/1009892
______________________________________________________________________________
Announcement ID: openSUSE-SU-2016:2934-1
Rating: moderate
References: #1009892
Cross-References: CVE-2016-5199
Affected Products:
openSUSE Leap 42.2
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
This update to ffmpeg 3.2 fixes the following issues:
- CVE-2016-5199: Heap corruption in FFmpeg (boo#1009892)
FFmpeg was updated to version 3.2, incorporating the following upstream
improvements:
- SDL2 output device and ffplay support
- SDL1 output device and SDL1 support removed
- New: libopenmpt demuxer, fifo muxer, True Audio (TTA) muxer
- New filters: weave, gblur, avgblur, sobel, prewitt, vaguedenoiser,
yuvtestsrc, lut2, hysteresis, maskedclamp, crystalizer, acrusher,
bitplanenoise, sidedata, asidedata
- Non-Local Means (nlmeans) denoising filter
- 16-bit support in curves filter and selectivecolor filter
- Added threads option per filter instance
- The "curves" filter does not automatically insert points at x=0 and x=1
anymore
- Matroska muxer now writes CRC32 elements by default in all Level 1
elements
- New "tee" protocol
- VP8 in Ogg muxing
- Floating point support in ALS decoder
- Extended mov edit list support
- Changed mapping of RTP MIME type G726 to codec g726le.
Also contains a collection of upstream bug fixes.
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE Leap 42.2:
zypper in -t patch openSUSE-2016-1365=1
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE Leap 42.2 (i586 x86_64):
ffmpeg-3.2-4.1
ffmpeg-debuginfo-3.2-4.1
ffmpeg-debugsource-3.2-4.1
libavcodec-devel-3.2-4.1
libavcodec57-3.2-4.1
libavcodec57-debuginfo-3.2-4.1
libavdevice-devel-3.2-4.1
libavdevice57-3.2-4.1
libavdevice57-debuginfo-3.2-4.1
libavfilter-devel-3.2-4.1
libavfilter6-3.2-4.1
libavfilter6-debuginfo-3.2-4.1
libavformat-devel-3.2-4.1
libavformat57-3.2-4.1
libavformat57-debuginfo-3.2-4.1
libavresample-devel-3.2-4.1
libavresample3-3.2-4.1
libavresample3-debuginfo-3.2-4.1
libavutil-devel-3.2-4.1
libavutil55-3.2-4.1
libavutil55-debuginfo-3.2-4.1
libpostproc-devel-3.2-4.1
libpostproc54-3.2-4.1
libpostproc54-debuginfo-3.2-4.1
libswresample-devel-3.2-4.1
libswresample2-3.2-4.1
libswresample2-debuginfo-3.2-4.1
libswscale-devel-3.2-4.1
libswscale4-3.2-4.1
libswscale4-debuginfo-3.2-4.1
- openSUSE Leap 42.2 (x86_64):
libavcodec57-32bit-3.2-4.1
libavcodec57-debuginfo-32bit-3.2-4.1
libavdevice57-32bit-3.2-4.1
libavdevice57-debuginfo-32bit-3.2-4.1
libavfilter6-32bit-3.2-4.1
libavfilter6-debuginfo-32bit-3.2-4.1
libavformat57-32bit-3.2-4.1
libavformat57-debuginfo-32bit-3.2-4.1
libavresample3-32bit-3.2-4.1
libavresample3-debuginfo-32bit-3.2-4.1
libavutil55-32bit-3.2-4.1
libavutil55-debuginfo-32bit-3.2-4.1
libpostproc54-32bit-3.2-4.1
libpostproc54-debuginfo-32bit-3.2-4.1
libswresample2-32bit-3.2-4.1
libswresample2-debuginfo-32bit-3.2-4.1
libswscale4-32bit-3.2-4.1
libswscale4-debuginfo-32bit-3.2-4.1
References:
https://www.suse.com/security/cve/CVE-2016-5199.html
https://bugzilla.suse.com/1009892
< Previous | Next > |