lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-Id: <E1T76oi-0004Wz-LX@titan.mandriva.com>
Date: Thu, 30 Aug 2012 17:38:00 +0200
From: security@...driva.com
To: full-disclosure@...ts.grok.org.uk
Subject: [ MDVSA-2012:148 ] ffmpeg

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________

 Mandriva Linux Security Advisory                         MDVSA-2012:148
 http://www.mandriva.com/security/
 _______________________________________________________________________

 Package : ffmpeg
 Date    : August 30, 2012
 Affected: 2011., Enterprise Server 5.0
 _______________________________________________________________________

 Problem Description:

 Multiple vulnerabilities has been found and corrected in ffmpeg. This
 advisory provides updated versions which resolves various security
 issues.
 _______________________________________________________________________

 References:

 http://ffmpeg.org/security.html
 _______________________________________________________________________

 Updated Packages:

 Mandriva Linux 2011:
 81021a98362e01dbddbf3dd965c44048  2011/i586/ffmpeg-0.7.13-0.1-mdv2011.0.i586.rpm
 7dad425d75ae882d6b110fbc002c29be  2011/i586/libavfilter1-0.7.13-0.1-mdv2011.0.i586.rpm
 5581d8f84cb9aa7bd338d3e2ce3e42bb  2011/i586/libavformats52-0.7.13-0.1-mdv2011.0.i586.rpm
 2a127eb1ca05d4f690081688d6816784  2011/i586/libavutil50-0.7.13-0.1-mdv2011.0.i586.rpm
 5d00d58ccaa5b2d4851f3d758adec03c  2011/i586/libffmpeg52-0.7.13-0.1-mdv2011.0.i586.rpm
 f92daad11480b2bda5c7669b22d8a1e6  2011/i586/libffmpeg-devel-0.7.13-0.1-mdv2011.0.i586.rpm
 7570f171617af585e85f837e520deadf  2011/i586/libffmpeg-static-devel-0.7.13-0.1-mdv2011.0.i586.rpm
 122855ddf284250312cede9f67aa1f3b  2011/i586/libpostproc51-0.7.13-0.1-mdv2011.0.i586.rpm
 0039f2b3e96c0e31b45acec5207c0c6d  2011/i586/libswscaler0-0.7.13-0.1-mdv2011.0.i586.rpm 
 65d28a30a254476ef2c81a1b167bb845  2011/SRPMS/ffmpeg-0.7.13-0.1.src.rpm

 Mandriva Linux 2011/X86_64:
 ec67985f3b387aa496a504b9d7d485a9  2011/x86_64/ffmpeg-0.7.13-0.1-mdv2011.0.x86_64.rpm
 5b965d84954026782cf845187adc0d7b  2011/x86_64/lib64avfilter1-0.7.13-0.1-mdv2011.0.x86_64.rpm
 3cf0212de0e06d6f8231830ca8770cff  2011/x86_64/lib64avformats52-0.7.13-0.1-mdv2011.0.x86_64.rpm
 3b6c6abba1a9041879e11cc7c848854f  2011/x86_64/lib64avutil50-0.7.13-0.1-mdv2011.0.x86_64.rpm
 1c43bb7a26851a826bab1acff5a4812c  2011/x86_64/lib64ffmpeg52-0.7.13-0.1-mdv2011.0.x86_64.rpm
 2052b2840cb232c3c959d615a004b463  2011/x86_64/lib64ffmpeg-devel-0.7.13-0.1-mdv2011.0.x86_64.rpm
 3d58cfc7f128e4c3fafedf74dfd805cb  2011/x86_64/lib64ffmpeg-static-devel-0.7.13-0.1-mdv2011.0.x86_64.rpm
 ba824887013a5d3508dc84e4309b9228  2011/x86_64/lib64postproc51-0.7.13-0.1-mdv2011.0.x86_64.rpm
 55bea2b18028773f2f97a584088f94ff  2011/x86_64/lib64swscaler0-0.7.13-0.1-mdv2011.0.x86_64.rpm 
 65d28a30a254476ef2c81a1b167bb845  2011/SRPMS/ffmpeg-0.7.13-0.1.src.rpm

 Mandriva Enterprise Server 5:
 ef6875fca1ba220fd63706695e6f4161  mes5/i586/ffmpeg-0.5.10-0.1mdvmes5.2.i586.rpm
 ee216fb3e3e217dd3696571a16af5e2b  mes5/i586/libavformats52-0.5.10-0.1mdvmes5.2.i586.rpm
 801a41637d4fba241706457741a7fa29  mes5/i586/libavutil49-0.5.10-0.1mdvmes5.2.i586.rpm
 b4ef0cbce571fa6d4908a07d6f4680fa  mes5/i586/libffmpeg52-0.5.10-0.1mdvmes5.2.i586.rpm
 8a23fdcaefb1ea6c37b221e18fadd7b4  mes5/i586/libffmpeg-devel-0.5.10-0.1mdvmes5.2.i586.rpm
 07698c0e43cab8ae750e4911bb2fb9d1  mes5/i586/libffmpeg-static-devel-0.5.10-0.1mdvmes5.2.i586.rpm
 412c1a53f42d5551f557a6cb4a03bf34  mes5/i586/libpostproc51-0.5.10-0.1mdvmes5.2.i586.rpm
 8ec97cbe708fd21a1c078cc4a6f03d58  mes5/i586/libswscaler0-0.5.10-0.1mdvmes5.2.i586.rpm 
 c3f31c0adf6d38d5c41838c0cfe61acb  mes5/SRPMS/ffmpeg-0.5.10-0.1mdvmes5.2.src.rpm

 Mandriva Enterprise Server 5/X86_64:
 94fd300dc87d7ec63d8bd31e6a56c77d  mes5/x86_64/ffmpeg-0.5.10-0.1mdvmes5.2.x86_64.rpm
 cc913cfe30d9c5eed0828671039e9924  mes5/x86_64/lib64avformats52-0.5.10-0.1mdvmes5.2.x86_64.rpm
 f7cc86fe522a549512b4d733994a4705  mes5/x86_64/lib64avutil49-0.5.10-0.1mdvmes5.2.x86_64.rpm
 e65c7e167feeaa1b8a33d49facf191ab  mes5/x86_64/lib64ffmpeg52-0.5.10-0.1mdvmes5.2.x86_64.rpm
 d699b9e6392d4aa9bb077346bff9bbb7  mes5/x86_64/lib64ffmpeg-devel-0.5.10-0.1mdvmes5.2.x86_64.rpm
 321e678bb1d3834e2f057bfe08f37018  mes5/x86_64/lib64ffmpeg-static-devel-0.5.10-0.1mdvmes5.2.x86_64.rpm
 2ee1d833254d74cfbab5bae073f78d99  mes5/x86_64/lib64postproc51-0.5.10-0.1mdvmes5.2.x86_64.rpm
 f82ea605d14afc702e85d3d55a68a3a7  mes5/x86_64/lib64swscaler0-0.5.10-0.1mdvmes5.2.x86_64.rpm 
 c3f31c0adf6d38d5c41838c0cfe61acb  mes5/SRPMS/ffmpeg-0.5.10-0.1mdvmes5.2.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  <security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iD8DBQFQP1wGmqjQ0CJFipgRAohlAKDPaFlqit5fLAVr/9yOXlrY65+8IgCeNi2m
wODpRK3zEoIJFMrhNbtxoR8=
=JRFl
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists