AVG-172

Package ffmpeg
Status Fixed
Severity Critical
Type arbitrary code execution
Affected 1:3.2.3-1
Fixed 1:3.2.4-1
Current 1:4.0.1-1 [extra]
Ticket None
Created Sun Feb 12 10:31:22 2017
Issue Severity Remote Type Description
CVE-2017-5025 Critical Yes Arbitrary code execution
A heap overflow flaw was found in FFmpeg < 3.2.4.
CVE-2017-5024 Critical Yes Arbitrary code execution
A heap overflow flaw was found in FFmpeg < 3.2.4.
Date Advisory Package Description
12 Feb 2017 ASA-201702-10 ffmpeg arbitrary code execution
References
https://ffmpeg.org/security.html