openSUSE Security Update : ffmpeg (openSUSE-2016-1365)

high Nessus Plugin ID 95377

Language:

Synopsis

The remote openSUSE host is missing a security update.

Description

This update to ffmpeg 3.2 fixes the following issues :

- CVE-2016-5199: Heap corruption in FFmpeg (boo#1009892)

FFmpeg was updated to version 3.2, incorporating the following upstream improvements :

- SDL2 output device and ffplay support

- SDL1 output device and SDL1 support removed

- New: libopenmpt demuxer, fifo muxer, True Audio (TTA) muxer

- New filters: weave, gblur, avgblur, sobel, prewitt, vaguedenoiser, yuvtestsrc, lut2, hysteresis, maskedclamp, crystalizer, acrusher, bitplanenoise, sidedata, asidedata

- Non-Local Means (nlmeans) denoising filter

- 16-bit support in curves filter and selectivecolor filter

- Added threads option per filter instance

- The 'curves' filter does not automatically insert points at x=0 and x=1 anymore

- Matroska muxer now writes CRC32 elements by default in all Level 1 elements

- New 'tee' protocol

- VP8 in Ogg muxing

- Floating point support in ALS decoder

- Extended mov edit list support

- Changed mapping of RTP MIME type G726 to codec g726le.

Also contains a collection of upstream bug fixes.

Solution

Update the affected ffmpeg packages.

See Also

https://bugzilla.opensuse.org/show_bug.cgi?id=1009892

Plugin Details

Severity: High

ID: 95377

File Name: openSUSE-2016-1365.nasl

Version: 3.6

Type: local

Agent: unix

Published: 11/29/2016

Updated: 1/19/2021

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS v3

Risk Factor: High

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: p-cpe:/a:novell:opensuse:ffmpeg-debugsource, p-cpe:/a:novell:opensuse:libavcodec-devel, p-cpe:/a:novell:opensuse:libavcodec57, p-cpe:/a:novell:opensuse:libavcodec57-32bit, p-cpe:/a:novell:opensuse:libavcodec57-debuginfo, p-cpe:/a:novell:opensuse:libavcodec57-debuginfo-32bit, p-cpe:/a:novell:opensuse:libavdevice-devel, p-cpe:/a:novell:opensuse:libavdevice57, p-cpe:/a:novell:opensuse:libavdevice57-32bit, p-cpe:/a:novell:opensuse:libavdevice57-debuginfo, p-cpe:/a:novell:opensuse:libavdevice57-debuginfo-32bit, p-cpe:/a:novell:opensuse:libavfilter-devel, p-cpe:/a:novell:opensuse:libavfilter6, p-cpe:/a:novell:opensuse:libavfilter6-32bit, p-cpe:/a:novell:opensuse:libavfilter6-debuginfo, p-cpe:/a:novell:opensuse:libavfilter6-debuginfo-32bit, p-cpe:/a:novell:opensuse:libavformat-devel, p-cpe:/a:novell:opensuse:libavformat57, p-cpe:/a:novell:opensuse:libavformat57-32bit, p-cpe:/a:novell:opensuse:libavformat57-debuginfo, p-cpe:/a:novell:opensuse:libavformat57-debuginfo-32bit, p-cpe:/a:novell:opensuse:libavresample-devel, p-cpe:/a:novell:opensuse:libavresample3, p-cpe:/a:novell:opensuse:libavresample3-32bit, p-cpe:/a:novell:opensuse:ffmpeg, p-cpe:/a:novell:opensuse:ffmpeg-debuginfo, p-cpe:/a:novell:opensuse:libavresample3-debuginfo, p-cpe:/a:novell:opensuse:libavresample3-debuginfo-32bit, p-cpe:/a:novell:opensuse:libavutil-devel, p-cpe:/a:novell:opensuse:libavutil55, p-cpe:/a:novell:opensuse:libavutil55-32bit, p-cpe:/a:novell:opensuse:libavutil55-debuginfo, p-cpe:/a:novell:opensuse:libavutil55-debuginfo-32bit, p-cpe:/a:novell:opensuse:libpostproc-devel, p-cpe:/a:novell:opensuse:libpostproc54, p-cpe:/a:novell:opensuse:libpostproc54-32bit, p-cpe:/a:novell:opensuse:libpostproc54-debuginfo, p-cpe:/a:novell:opensuse:libpostproc54-debuginfo-32bit, p-cpe:/a:novell:opensuse:libswresample-devel, p-cpe:/a:novell:opensuse:libswresample2, p-cpe:/a:novell:opensuse:libswresample2-32bit, p-cpe:/a:novell:opensuse:libswresample2-debuginfo, p-cpe:/a:novell:opensuse:libswresample2-debuginfo-32bit, p-cpe:/a:novell:opensuse:libswscale-devel, p-cpe:/a:novell:opensuse:libswscale4, p-cpe:/a:novell:opensuse:libswscale4-32bit, p-cpe:/a:novell:opensuse:libswscale4-debuginfo, p-cpe:/a:novell:opensuse:libswscale4-debuginfo-32bit, cpe:/o:novell:opensuse:42.2

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 11/28/2016

Reference Information

CVE: CVE-2016-5199