-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-4722-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff July 08, 2020 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : ffmpeg CVE ID : CVE-2019-13390 CVE-2019-17539 CVE-2019-17542 CVE-2020-12284 CVE-2020-13904 Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed files/streams are processed. For the stable distribution (buster), these problems have been fixed in version 7:4.1.6-1~deb10u1. We recommend that you upgrade your ffmpeg packages. For the detailed security status of ffmpeg please refer to its security tracker page at: https://security-tracker.debian.org/tracker/ffmpeg Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAl8GL8kACgkQEMKTtsN8 TjaUtxAAjn9NzW5dliDcjnlR8Kx2lZ7tsozR9220gbDY38Z2XoV/E1HliEdrFnrK pEsylyV8RCjgmim5kf6qiiuA4LyHgqKPvuzcJLp54ox5iR+6XC/GhHrd7g961+72 oLF8H+/oSIf6M+VS07DuoMQGiKKxMR/bS+LS7CYtq9cXzbZa1XCy/PZUWRmckyA/ UBQi42bzeDhXYaNFqfTXS9YByLz5wJIqvPlCudiM32Yhgyf6x2ug0A8p584iuRS5 JU66eZXyEWMXzlZD3+kEWzA5apmvhxDiETu+Uz38AD7CT4nvRiuygoCPbRgyiD9i voEoQ+EZnvca4Ljd3n5p5iqmqhHk4q5KezaSjtjEfTA27meHuKGTY47ktU+iflHZ /e6FBsfB6mFx/b/rLZVl+KBIPIwPldG/ypsH4+shtnj+ZZ/6y3HT7kWTKoVviB+q 99eEPn1MLRY/nUsNVFoYg4RSWfn9EOmV7QQJgOy0RyBVdTsG3sKhsw9D2WOGy7Li 241qu6ot7/gpTGXWSS41XYUXXFLsLyY+xy4QI/Jqbew+Eig/c+/1tRs3RJQhmBmt Ggzr81xbOsUJHkcIjdHtu9fm8U3yZn4PCuOYDwb6QaVM8OaPbKFGi9jnoXs9Cpok E5M5Q+Mcfu+V6rrlgV3UYl0ixgqoXQi2xOJPQjPS67iYwwgwaEM= =MzNU -----END PGP SIGNATURE-----