Ubuntu Security Notice 4431-1 - It was discovered that FFmpeg incorrectly verified empty audio packets or HEVC data. An attacker could possibly use this issue to cause a denial of service via a crafted file. This issue only affected Ubuntu 16.04 LTS, as it was already fixed in Ubuntu 18.04 LTS.
09360fbe76e434880b49f3b0bb8961f0d26db5eb0724966fb2ef006d9225dff2
Gentoo Linux Security Advisory 202003-65 - Multiple vulnerabilities have been found in FFmpeg, the worst of which allows remote attackers to execute arbitrary code. Versions greater than or equal to 4 are affected.
08bea2fea0ca58305840c700a9d387be009f877cc9024d75fa1464f89d1424b1