Advisories ยป MGASA-2023-0043

Updated ffmpeg packages fix security vulnerability

Publication date: 14 Feb 2023
Modification date: 14 Feb 2023
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-3341

Description

A null pointer dereference issue was discovered in 'FFmpeg' in
decode_main_header() function of libavformat/nutdec.c file. The flaw
occurs because the function lacks check of the return value of
avformat_new_stream() and triggers the null pointer dereference error,
causing an application to crash. (CVE-2022-3341)
                

References

SRPMS

8/core

8/tainted