ALT Linux Team

Branch sisyphus update on 2019-04-05

2019-04-05

ALT-BU-2019-3587-1

Branch sisyphus update bulletin.

ALT-PU-2019-1588-1

Package ffmpeg updated to version 4.1.3-alt1 for branch sisyphus in task 226542.

Closed vulnerabilities

Published: 2019-03-23

BDU:2019-03328

Уязвимость мультимедийной библиотеки FFmpeg, связанная с разыменованием нулевого указателя, позволяющая нарушителю вызвать отказ в обслуживании

Severity: HIGH (8.8) Vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References:
Published: 2019-04-19
Modified: 2024-11-21

CVE-2019-11338

libavcodec/hevcdec.c in FFmpeg 3.4 and 4.1.2 mishandles detection of duplicate first slices, which allows remote attackers to cause a denial of service (NULL pointer dereference and out-of-array access) or possibly have unspecified other impact via crafted HEVC data.

Severity: HIGH (8.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
References:

ALT-PU-2019-1589-1

Package awesome updated to version 4.3-alt2 for branch sisyphus in task 226549.

Closed bugs

Bug #36499

missing requires

VKontakte | Telegram | YouTube | Forum | GitHub | Bugzilla
Version: 2.1.0
Back to top