{"affected":[{"ecosystem_specific":{"binaries":[{"libavcodec57":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP5","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"ffmpeg":"3.4.2-150200.11.41.1","libavdevice57":"3.4.2-150200.11.41.1","libavfilter6":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP5","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libavcodec57":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample-devel":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP2-LTSS","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP2-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libavcodec57":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample-devel":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP3-LTSS","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libavcodec57":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOS","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libavcodec57":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSS","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libavcodec57":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample-devel":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP2-LTSS","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP2-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libavcodec57":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample-devel":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP3-LTSS","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libavcodec57":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 15 SP4-LTSS","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSS"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libavcodec57":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample-devel":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15 SP2","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libavcodec57":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample-devel":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15 SP3","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libavcodec57":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15 SP4","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libavcodec-devel":"3.4.2-150200.11.41.1","libavformat-devel":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample-devel":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Workstation Extension 15 SP5","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libavcodec57":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavresample-devel":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"SUSE:Enterprise Storage 7.1","name":"ffmpeg","purl":"pkg:rpm/suse/ffmpeg&distro=SUSE%20Enterprise%20Storage%207.1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"ffmpeg":"3.4.2-150200.11.41.1","ffmpeg-private-devel":"3.4.2-150200.11.41.1","libavcodec-devel":"3.4.2-150200.11.41.1","libavcodec57":"3.4.2-150200.11.41.1","libavcodec57-32bit":"3.4.2-150200.11.41.1","libavdevice-devel":"3.4.2-150200.11.41.1","libavdevice57":"3.4.2-150200.11.41.1","libavdevice57-32bit":"3.4.2-150200.11.41.1","libavfilter-devel":"3.4.2-150200.11.41.1","libavfilter6":"3.4.2-150200.11.41.1","libavfilter6-32bit":"3.4.2-150200.11.41.1","libavformat-devel":"3.4.2-150200.11.41.1","libavformat57":"3.4.2-150200.11.41.1","libavformat57-32bit":"3.4.2-150200.11.41.1","libavresample-devel":"3.4.2-150200.11.41.1","libavresample3":"3.4.2-150200.11.41.1","libavresample3-32bit":"3.4.2-150200.11.41.1","libavutil-devel":"3.4.2-150200.11.41.1","libavutil55":"3.4.2-150200.11.41.1","libavutil55-32bit":"3.4.2-150200.11.41.1","libpostproc-devel":"3.4.2-150200.11.41.1","libpostproc54":"3.4.2-150200.11.41.1","libpostproc54-32bit":"3.4.2-150200.11.41.1","libswresample-devel":"3.4.2-150200.11.41.1","libswresample2":"3.4.2-150200.11.41.1","libswresample2-32bit":"3.4.2-150200.11.41.1","libswscale-devel":"3.4.2-150200.11.41.1","libswscale4":"3.4.2-150200.11.41.1","libswscale4-32bit":"3.4.2-150200.11.41.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.5","name":"ffmpeg","purl":"pkg:rpm/opensuse/ffmpeg&distro=openSUSE%20Leap%2015.5"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.2-150200.11.41.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for ffmpeg fixes the following issues:\n\n- CVE-2024-31578: Fixed heap use-after-free via av_hwframe_ctx_init() when vulkan_frames init failed (bsc#1223070)\n- CVE-2023-49502: Fixed heap buffer overflow via the ff_bwdif_filter_intra_c function in libavfilter/bwdifdsp.c (bsc#1223235)\n\nAdding references for already fixed issues:\n  \n- CVE-2021-38091: Fixed integer overflow in function filter16_sobel in libavfilter/vf_convolution.c (bsc#1190732)\n- CVE-2021-38090: Fixed integer overflow in function filter16_roberts in libavfilter/vf_convolution.c (bsc#1190731)\n- CVE-2020-20898: Fixed integer overflow vulnerability in function filter16_prewitt in libavfilter/vf_convolution.c (bsc#1190724)\n- CVE-2020-20901: Fixed buffer overflow vulnerability in function filter_frame in libavfilter/vf_fieldorder.c (bsc#1190728)\n- CVE-2020-20900: Fixed buffer overflow vulnerability in function gaussian_blur in libavfilter/vf_edgedetect.c (bsc#1190727)\n- CVE-2020-20894: Fixed buffer Overflow vulnerability in function gaussian_blur in libavfilter/vf_edgedetect.c (bsc#1190721)   \n","id":"SUSE-SU-2024:1468-1","modified":"2024-04-29T15:59:01Z","published":"2024-04-29T15:59:01Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2024/suse-su-20241468-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1190721"},{"type":"REPORT","url":"https://bugzilla.suse.com/1190724"},{"type":"REPORT","url":"https://bugzilla.suse.com/1190727"},{"type":"REPORT","url":"https://bugzilla.suse.com/1190728"},{"type":"REPORT","url":"https://bugzilla.suse.com/1190731"},{"type":"REPORT","url":"https://bugzilla.suse.com/1190732"},{"type":"REPORT","url":"https://bugzilla.suse.com/1223070"},{"type":"REPORT","url":"https://bugzilla.suse.com/1223235"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-20894"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-20898"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-20900"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2020-20901"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-38090"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-38091"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-38094"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-49502"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2024-31578"}],"related":["CVE-2020-20894","CVE-2020-20898","CVE-2020-20900","CVE-2020-20901","CVE-2021-38090","CVE-2021-38091","CVE-2021-38094","CVE-2023-49502","CVE-2024-31578"],"summary":"Security update for ffmpeg","upstream":["CVE-2020-20894","CVE-2020-20898","CVE-2020-20900","CVE-2020-20901","CVE-2021-38090","CVE-2021-38091","CVE-2021-38094","CVE-2023-49502","CVE-2024-31578"]}