AVG-1180 log

Package ffmpeg
Status Fixed
Severity High
Type arbitrary code execution
Affected 2:4.2.3-2
Fixed 2:4.3.1-1
Current 2:4.3.1-2 [extra]
Ticket None
Created Mon Jun 8 20:01:52 2020
Issue Severity Remote Type Description
CVE-2020-13904 High Yes Arbitrary code execution
A use-after-free via a crafted EXTINF duration in an m3u8 file has been found in ffmpeg <= 4.2.3, because parse_playlist in libavformat/hls.c frees a...
Date Advisory Package Description
31 Jul 2020 ASA-202007-4 ffmpeg arbitrary code execution
References
https://trac.ffmpeg.org/ticket/8673