Ubuntu 7188-1: FFmpeg Security Advisory Updates
Summary
A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: FFmpeg could be made to crash if it received specially crafted input. Software Description: - ffmpeg: Tools for transcoding, streaming and playing of multimedia files Details: It was discovered that FFmpeg incorrectly handled certain input, which could lead to an integer overflow. An attacker could possibly use this issue to cause a denial of service by crashing the application.
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 22.04 LTS ffmpeg 7:4.4.2-0ubuntu0.22.04.1+esm6 Available with Ubuntu Pro libavcodec-extra58 7:4.4.2-0ubuntu0.22.04.1+esm6 Available with Ubuntu Pro libavcodec58 7:4.4.2-0ubuntu0.22.04.1+esm6 Available with Ubuntu Pro libavdevice58 7:4.4.2-0ubuntu0.22.04.1+esm6 Available with Ubuntu Pro libavfilter-extra7 7:4.4.2-0ubuntu0.22.04.1+esm6 Available with Ubuntu Pro libavfilter7 7:4.4.2-0ubuntu0.22.04.1+esm6 Available with Ubuntu Pro libavformat-extra58 7:4.4.2-0ubuntu0.22.04.1+esm6 Available with Ubuntu Pro libavformat58 7:4.4.2-0ubuntu0.22.04.1+esm6 Available with Ubuntu Pro libavutil56 7:4.4.2-0ubuntu0.22.04.1+esm6 Available with Ubuntu Pro libpostproc55 7:4.4.2-0ubuntu0.22.04.1+esm6 Available with Ubuntu Pro libswresample3 7:4.4.2-0ubuntu0.22.04.1+esm6 Available with Ubuntu Pro libswscale5 7:4.4.2-0ubuntu0.22.04.1+esm6 Available with Ubuntu Pro Ubuntu 20.04 LTS ffmpeg 7:4.2.7-0ubuntu0.1+esm7 Available with Ubuntu Pro libavcodec-extra58 7:4.2.7-0ubuntu0.1+esm7 Available with Ubuntu Pro libavcodec58 7:4.2.7-0ubuntu0.1+esm7 Available with Ubuntu Pro libavdevice58 7:4.2.7-0ubuntu0.1+esm7 Available with Ubuntu Pro libavfilter-extra7 7:4.2.7-0ubuntu0.1+esm7 Available with Ubuntu Pro libavfilter7 7:4.2.7-0ubuntu0.1+esm7 Available with Ubuntu Pro libavformat58 7:4.2.7-0ubuntu0.1+esm7 Available with Ubuntu Pro libavresample4 7:4.2.7-0ubuntu0.1+esm7 Available with Ubuntu Pro libavutil56 7:4.2.7-0ubuntu0.1+esm7 Available with Ubuntu Pro libpostproc55 7:4.2.7-0ubuntu0.1+esm7 Available with Ubuntu Pro libswresample3 7:4.2.7-0ubuntu0.1+esm7 Available with Ubuntu Pro libswscale5 7:4.2.7-0ubuntu0.1+esm7 Available with Ubuntu Pro Ubuntu 18.04 LTS ffmpeg 7:3.4.11-0ubuntu0.1+esm7 Available with Ubuntu Pro libavcodec-extra57 7:3.4.11-0ubuntu0.1+esm7 Available with Ubuntu Pro libavcodec57 7:3.4.11-0ubuntu0.1+esm7 Available with Ubuntu Pro libavdevice57 7:3.4.11-0ubuntu0.1+esm7 Available with Ubuntu Pro libavfilter-extra6 7:3.4.11-0ubuntu0.1+esm7 Available with Ubuntu Pro libavfilter6 7:3.4.11-0ubuntu0.1+esm7 Available with Ubuntu Pro libavformat57 7:3.4.11-0ubuntu0.1+esm7 Available with Ubuntu Pro libavresample3 7:3.4.11-0ubuntu0.1+esm7 Available with Ubuntu Pro libavutil55 7:3.4.11-0ubuntu0.1+esm7 Available with Ubuntu Pro libpostproc54 7:3.4.11-0ubuntu0.1+esm7 Available with Ubuntu Pro libswresample2 7:3.4.11-0ubuntu0.1+esm7 Available with Ubuntu Pro libswscale4 7:3.4.11-0ubuntu0.1+esm7 Available with Ubuntu Pro Ubuntu 16.04 LTS ffmpeg 7:2.8.17-0ubuntu0.1+esm9 Available with Ubuntu Pro libav-tools 7:2.8.17-0ubuntu0.1+esm9 Available with Ubuntu Pro libavcodec-ffmpeg-extra56 7:2.8.17-0ubuntu0.1+esm9 Available with Ubuntu Pro libavcodec-ffmpeg56 7:2.8.17-0ubuntu0.1+esm9 Available with Ubuntu Pro libavdevice-ffmpeg56 7:2.8.17-0ubuntu0.1+esm9 Available with Ubuntu Pro libavfilter-ffmpeg5 7:2.8.17-0ubuntu0.1+esm9 Available with Ubuntu Pro libavformat-ffmpeg56 7:2.8.17-0ubuntu0.1+esm9 Available with Ubuntu Pro libavresample-ffmpeg2 7:2.8.17-0ubuntu0.1+esm9 Available with Ubuntu Pro libavutil-ffmpeg54 7:2.8.17-0ubuntu0.1+esm9 Available with Ubuntu Pro libpostproc-ffmpeg53 7:2.8.17-0ubuntu0.1+esm9 Available with Ubuntu Pro libswresample-ffmpeg1 7:2.8.17-0ubuntu0.1+esm9 Available with Ubuntu Pro libswscale-ffmpeg3 7:2.8.17-0ubuntu0.1+esm9 Available with Ubuntu Pro After a standard system update you need to restart FFmpeg to make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-7188-1
CVE-2024-36617
Package Information
