[ubuntu/questing-security] ffmpeg 7:7.1.1-1ubuntu4.2 (Accepted)
Bruce Cable
bruce.cable at canonical.com
Tue Jan 27 22:57:37 UTC 2026
ffmpeg (7:7.1.1-1ubuntu4.2) questing-security; urgency=medium
* SECURITY UPDATE: Buffer Overflow
- debian/patches/CVE-2025-59728.patch: Allocate space for
appended "/"
- debian/patches/CVE-2025-59731.patch: Check rle_raw_data
and surroundings
- debian/patches/CVE-2025-59732.patch: Don't access outside
xsize/ysize
- debian/patches/CVE-2025-59733.patch: Check for pixel type
consistency in DWA
- CVE-2025-59728
- CVE-2025-59731
- CVE-2025-59732
- CVE-2025-59733
* SECURITY UPDATE: Integer Overflow
- debian/patches/CVE-2025-63757.patch: Fix integer overflow
with lum/chr/alpha filter
- CVE-2025-63757
Date: 2026-01-23 11:50:11.940434+00:00
Changed-By: Bruce Cable <bruce.cable at canonical.com>
https://launchpad.net/ubuntu/+source/ffmpeg/7:7.1.1-1ubuntu4.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Questing-changes
mailing list