Showing 1 - 2 of 2

CVE-2020-22038

Status Candidate

Overview

A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_v4l2_m2m_create_context function in v4l2_m2m.c.

Ubuntu Security Notice USN-6449-2: Posted Nov 15, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 6449-2 - USN-6449-1 fixed vulnerabilities in FFmpeg. Unfortunately that update could introduce a regression in tools using an FFmpeg library, like VLC. This updated fixes the problem. It was discovered that FFmpeg incorrectly managed memory resulting in a memory leak. An attacker could possibly use this issue to cause a denial of service via application crash. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS.; tags | advisory, denial of service, vulnerability, memory leak; systems | linux, ubuntu; advisories | CVE-2020-22038, CVE-2021-38091, CVE-2021-38092, CVE-2022-48434; SHA-256 | bf6201e552c03ca8723582243756d69f93b6eea0b2163b8df982cdac79905eaa; Download | Favorite | View

Ubuntu Security Notice USN-6449-1: Posted Oct 24, 2023; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 6449-1 - It was discovered that FFmpeg incorrectly managed memory resulting in a memory leak. An attacker could possibly use this issue to cause a denial of service via application crash. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. It was discovered that FFmpeg incorrectly handled certain input files, leading to an integer overflow. An attacker could possibly use this issue to cause a denial of service via application crash. This issue only affected Ubuntu 20.04 LTS.; tags | advisory, denial of service, overflow, memory leak; systems | linux, ubuntu; advisories | CVE-2020-20898, CVE-2020-22038, CVE-2021-38091, CVE-2021-38092, CVE-2022-48434; SHA-256 | 30ff576e31ffb4f55aa40850734014c7fc975b5ab7b1fea8aaf260af4e227ccd; Download | Favorite | View

Page 1 of 1 Back 1 Next