-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5394-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
April 30, 2023                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : ffmpeg
CVE ID         : CVE-2022-3109

Several vulnerabilities have been discovered in the FFmpeg multimedia
framework, which could result in denial of service or potentially the
execution of arbitrary code if malformed files/streams are processed.

For the stable distribution (bullseye), this problem has been fixed in
version 7:4.3.6-0+deb11u1.

We recommend that you upgrade your ffmpeg packages.

For the detailed security status of ffmpeg please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/ffmpeg

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=PhLW
-----END PGP SIGNATURE-----