Debian DSA-3996-1 : ffmpeg - security update
High Nessus Plugin ID 103758
SynopsisThe remote Debian host is missing a security-related update.
DescriptionSeveral vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed Real, MV, RL2, ASF, Apple HLS, Phantom Cine, MXF, NSV, MOV or RTP H.264 files/streams are processed.
SolutionUpgrade the ffmpeg packages.
For the stable distribution (stretch), these problems have been fixed in version 7:3.2.8-1~deb9u1.