Your submission was sent successfully! Close

USN-3967-1: FFmpeg vulnerabilities

6 May 2019

FFmpeg could be made to crash if it opened a specially crafted file.

Releases

Packages

  • ffmpeg - Tools for transcoding, streaming and playing of multimedia files

Details

It was discovered that FFmpeg contained multiple security issues when handling
certain multimedia files. If a user were tricked into opening a crafted
multimedia file, an attacker could cause a denial of service via application
crash.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 19.04
Ubuntu 18.10
Ubuntu 18.04

In general, a standard system update will make all the necessary changes.

Related notices

  • USN-4431-1: libavcodec-ffmpeg56, libavformat-ffmpeg56, libavfilter-extra7, libavdevice58, libavdevice-ffmpeg56, libavcodec57, libavfilter-ffmpeg5, libavdevice-dev, libav-tools, libavfilter-dev, libavfilter-extra6, libavcodec-extra, libavutil56, libavfilter7, libswscale5, libavcodec-extra58, libavcodec58, libavformat58, libavresample-dev, libpostproc54, libswresample3, libavfilter-extra, ffmpeg-doc, libswscale-ffmpeg3, libavcodec-ffmpeg-extra56, libavformat-dev, libpostproc-dev, libavformat57, libavdevice57, libavresample-ffmpeg2, libswscale-dev, libpostproc-ffmpeg53, libswscale4, libavcodec-dev, ffmpeg, libavresample4, libavfilter6, libavutil-dev, libavutil-ffmpeg54, libavcodec-extra57, libavutil55, libswresample-dev, libavresample3, libpostproc55, libswresample2, libswresample-ffmpeg1