Protect yourself against future threats.
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
===========================================================================
AUSCERT External Security Bulletin Redistribution
ESB-2021.3879
ffmpeg security update
15 November 2021
===========================================================================
AusCERT Security Bulletin Summary
---------------------------------
Product: ffmpeg
Publisher: Debian
Operating System: Debian GNU/Linux
Impact/Access: Execute Arbitrary Code/Commands -- Remote with User Interaction
Denial of Service -- Remote/Unauthenticated
Reduced Security -- Remote/Unauthenticated
Resolution: Patch/Upgrade
CVE Names: CVE-2021-38291 CVE-2021-38171 CVE-2020-22054
CVE-2020-22049 CVE-2020-22048 CVE-2020-22046
CVE-2020-22044 CVE-2020-22041 CVE-2020-22037
CVE-2020-20453 CVE-2020-20451 CVE-2020-20446
CVE-2020-20445
Reference: ESB-2021.3623
ESB-2021.3592
ESB-2021.3481
ESB-2021.3216
Original Bulletin:
https://lists.debian.org/debian-lts-announce/2021/11/msg00012.html
- --------------------------BEGIN INCLUDED TEXT--------------------
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
- - -------------------------------------------------------------------------
Debian LTS Advisory DLA-2818-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Anton Gladky
November 13, 2021 https://wiki.debian.org/LTS
- - -------------------------------------------------------------------------
Package : ffmpeg
Version : 7:3.2.16-1+deb9u1
CVE ID : CVE-2020-20445 CVE-2020-20446 CVE-2020-20451 CVE-2020-20453
CVE-2020-22037 CVE-2020-22041 CVE-2020-22044 CVE-2020-22046
CVE-2020-22048 CVE-2020-22049 CVE-2020-22054 CVE-2021-38171
CVE-2021-38291
Multiple issues have been discovered in ffmpeg - tools for transcoding,
streaming and playing of multimedia files.
CVE-2020-20445
Divide By Zero issue via libavcodec/lpc.h, which allows a remote malicious
user to cause a Denial of Service.
CVE-2020-20446
Divide By Zero issue via libavcodec/aacpsy.c, which allows a remote malicious
user to cause a Denial of Service.
CVE-2020-20451
Denial of Service issue due to resource management errors via
fftools/cmdutils.c.
CVE-2020-20453
Divide By Zero issue via libavcodec/aaccoder, which allows a remote
malicious user to cause a Denial of Service.
CVE-2020-22037
A Denial of Service vulnerability due to a memory leak in
avcodec_alloc_context3 at options.c
CVE-2020-22041
A Denial of Service vulnerability due to a memory leak in
the av_buffersrc_add_frame_flags function in buffersrc.
CVE-2020-22044
A Denial of Service vulnerability due to a memory leak in the
url_open_dyn_buf_internal function in libavformat/aviobuf.c.
CVE-2020-22046
A Denial of Service vulnerability due to a memory leak in the
avpriv_float_dsp_allocl function in libavutil/float_dsp.c.
CVE-2020-22048
A Denial of Service vulnerability due to a memory leak in the
ff_frame_pool_get function in framepool.c.
CVE-2020-22049
A Denial of Service vulnerability due to a memory leak in the
wtvfile_open_sector function in wtvdec.c.
CVE-2020-22054
A Denial of Service vulnerability due to a memory leak in the av_dict_set
function in dict.c.
CVE-2021-38171
adts_decode_extradata in libavformat/adtsenc.c does not check the
init_get_bits return value, which is a necessary step because the second
argument to init_get_bits can be crafted.
CVE-2021-38291
Assertion failure at src/libavutil/mathematics.c, causing ffmpeg aborted
is detected. In some extrme cases, like with adpcm_ms samples with an
extremely high channel count, get_audio_frame_duration() may return a
negative frame duration value.
For Debian 9 stretch, these problems have been fixed in version
7:3.2.16-1+deb9u1.
We recommend that you upgrade your ffmpeg packages.
For the detailed security status of ffmpeg please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/ffmpeg
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
- -----BEGIN PGP SIGNATURE-----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=2qUQ
- -----END PGP SIGNATURE-----
- --------------------------END INCLUDED TEXT--------------------
You have received this e-mail bulletin as a result of your organisation's
registration with AusCERT. The mailing list you are subscribed to is
maintained within your organisation, so if you do not wish to continue
receiving these bulletins you should contact your local IT manager. If
you do not know who that is, please send an email to auscert@auscert.org.au
and we will forward your request to the appropriate person.
NOTE: Third Party Rights
This security bulletin is provided as a service to AusCERT's members. As
AusCERT did not write the document quoted above, AusCERT has had no control
over its content. The decision to follow or act on information or advice
contained in this security bulletin is the responsibility of each user or
organisation, and should be considered in accordance with your organisation's
site policies and procedures. AusCERT takes no responsibility for consequences
which may arise from following or acting on information or advice contained in
this security bulletin.
NOTE: This is only the original release of the security bulletin. It may
not be updated when updates to the original are made. If downloading at
a later date, it is recommended that the bulletin is retrieved directly
from the author's website to ensure that the information is still current.
Contact information for the authors of the original document is included
in the Security Bulletin above. If you have any questions or need further
information, please contact them directly.
Previous advisories and external security bulletins can be retrieved from:
https://www.auscert.org.au/bulletins/
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
-----BEGIN PGP SIGNATURE-----
Comment: http://www.auscert.org.au/render.html?it=1967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=QTNR
-----END PGP SIGNATURE-----