%27%20fill%3D%27%23E95420%27%3E%3Cpath%20d%3D%27m15.839%205.293-1.447-2.8a.136.136%200%200%200-.051-.055.144.144%200%200%200-.074-.02h-5.8a.143.143%200%200%200-.091.03.13.13%200%200%200-.034.17.138.138%200%200%200%20.072.06l7.251%202.8a.144.144%200%200%200%20.17-.054.13.13%200%200%200%20.007-.13l-.003-.001ZM11.839%204.945.073.223A.073.073%200%200%200%20.026.221a.07.07%200%200%200-.038.027.065.065%200%200%200%20.007.086l7.962%208.182a.069.069%200%200%200%20.049.022.072.072%200%200%200%20.047-.019l3.805-3.461a.066.066%200%200%200%20.02-.061.065.065%200%200%200-.014-.03.07.07%200%200%200-.028-.02l.003-.002ZM5.382%207.183a.071.071%200%200%200-.062-.022.07.07%200%200%200-.03.011.067.067%200%200%200-.023.025l-4.13%207.696a.065.065%200%200%200-.005.046.068.068%200%200%200%20.027.038.072.072%200%200%200%20.09-.006L7.13%209.18a.066.066%200%200%200%200-.087l-1.75-1.91Z%27%2F%3E%3C%2Fg%3E%3Cdefs%3E%3CclipPath%20id%3D%27a%27%3E%3Cpath%20fill%3D%27%23fff%27%20d%3D%27M0%200h15.83v15.21H0z%27%2F%3E%3C%2FclipPath%3E%3C%2Fdefs%3E%3C%2Fsvg%3E)
%27%20fill%3D%27%23E95420%27%3E%3Cpath%20d%3D%27M1.936%202.592c.668%200%201.21-.515%201.21-1.151S2.604.29%201.936.29C1.267.29.726.805.726%201.44c0%20.637.541%201.152%201.21%201.152ZM14.56.576H3.404a1.587%201.587%200%200%201%20.024%201.69l-.026.04h11.156a.56.56%200%200%200%20.386-.15.518.518%200%200%200%20.16-.369v-.692a.502.502%200%200%200-.16-.369.543.543%200%200%200-.386-.15ZM1.936%206.701c.668%200%201.21-.515%201.21-1.15%200-.637-.542-1.152-1.21-1.152-.669%200-1.21.515-1.21%201.151s.541%201.151%201.21%201.151ZM14.56%204.685H3.404a1.612%201.612%200%200%201%20.242%201.083c-.03.215-.105.421-.219.608l-.026.04h11.157a.56.56%200%200%200%20.386-.15.518.518%200%200%200%20.16-.37v-.692a.5.5%200%200%200-.16-.369.542.542%200%200%200-.386-.15ZM1.936%2010.81c.668%200%201.21-.515%201.21-1.15%200-.637-.542-1.152-1.21-1.152-.669%200-1.21.515-1.21%201.151s.541%201.151%201.21%201.151ZM14.56%208.795H3.404a1.611%201.611%200%200%201%20.243%201.082%201.581%201.581%200%200%201-.245.648h11.156a.559.559%200%200%200%20.386-.15.517.517%200%200%200%20.16-.37v-.692a.502.502%200%200%200-.16-.368.543.543%200%200%200-.386-.15ZM1.936%2014.92c.668%200%201.21-.515%201.21-1.15%200-.637-.542-1.152-1.21-1.152-.669%200-1.21.515-1.21%201.151s.541%201.151%201.21%201.151ZM14.56%2012.904H3.404a1.611%201.611%200%200%201%20.242%201.082%201.58%201.58%200%200%201-.219.608l-.026.04h11.157a.562.562%200%200%200%20.386-.15.517.517%200%200%200%20.16-.37v-.692a.5.5%200%200%200-.16-.369.543.543%200%200%200-.386-.15Z%27%2F%3E%3C%2Fg%3E%3Cdefs%3E%3CclipPath%20id%3D%27a%27%3E%3Cpath%20fill%3D%27%23fff%27%20d%3D%27M0%200h15.83v15.21H0z%27%2F%3E%3C%2FclipPath%3E%3C%2Fdefs%3E%3C%2Fsvg%3E)
%27%20fill%3D%27%23E95420%27%3E%3Cpath%20d%3D%27M9.618.272c-.634%200-1.243.243-1.691.674-.448.43-.7%201.015-.701%201.624v4.221a1.9%201.9%200%200%201%201.362%200v-4.22a.955.955%200%200%201%20.291-.72%201.067%201.067%200%200%201%201.479%200%20.955.955%200%200%201%20.29.719v.962h1.363V2.57c0-.61-.253-1.194-.702-1.625A2.445%202.445%200%200%200%209.618.272ZM9.017%208.433c0%20.21-.065.417-.187.593a1.102%201.102%200%200%201-.499.393c-.203.08-.426.102-.642.06a1.125%201.125%200%200%201-.568-.292%201.055%201.055%200%200%201-.304-.547%201.028%201.028%200%200%201%20.064-.616c.084-.195.226-.362.41-.479a1.143%201.143%200%200%201%201.401.133c.103.1.185.217.24.347.057.129.085.268.085.408ZM2.773%205.855c-.634.001-1.242.244-1.69.674C.633%206.96.381%207.545.38%208.154v4.082a1.901%201.901%200%200%201%201.363%200V8.154a.955.955%200%200%201%20.29-.719%201.067%201.067%200%200%201%201.479%200%20.955.955%200%200%201%20.29.719v.962h1.363v-.962c0-.61-.253-1.194-.702-1.625a2.444%202.444%200%200%200-1.69-.674ZM2.166%2013.878c0%20.21-.065.415-.186.59-.121.174-.294.31-.496.39-.202.08-.424.102-.638.06a1.119%201.119%200%200%201-.565-.29%201.049%201.049%200%200%201-.302-.543c-.043-.206-.02-.42.063-.614.084-.194.225-.36.407-.476a1.136%201.136%200%200%201%201.394.133%201.024%201.024%200%200%201%20.323.75Z%27%2F%3E%3Cpath%20d%3D%27M14.752%204.76a1.789%201.789%200%200%201-.681-.126v2.411a.972.972%200%200%201-.312.682c-.193.179-.45.28-.718.28-.268%200-.526-.101-.718-.28a.972.972%200%200%201-.312-.682V4.32h-1.363v2.726c0%20.61.252%201.195.7%201.626a2.443%202.443%200%200%200%201.692.673c.635%200%201.244-.242%201.692-.673.449-.431.7-1.016.7-1.626v-2.41a1.9%201.9%200%200%201-.68.125ZM15.858%202.822c.037.225%200%20.455-.107.658a1.1%201.1%200%200%201-.49.472%201.161%201.161%200%200%201-1.302-.198%201.04%201.04%200%200%201-.206-1.251%201.1%201.1%200%200%201%20.492-.47%201.161%201.161%200%200%201%201.299.199c.166.16.276.366.314.59ZM7.907%2010.2c-.233%200-.465-.042-.681-.126V12.6a.97.97%200%200%201-.302.7%201.05%201.05%200%200%201-.728.29%201.05%201.05%200%200%201-.728-.29.97.97%200%200%201-.302-.7V9.845H3.804V12.6c0%20.61.252%201.194.7%201.625a2.443%202.443%200%200%200%201.692.674c.634%200%201.243-.243%201.692-.674.448-.43.7-1.015.7-1.625v-2.526a1.887%201.887%200%200%201-.68.127Z%27%2F%3E%3C%2Fg%3E%3Cdefs%3E%3CclipPath%20id%3D%27a%27%3E%3Cpath%20fill%3D%27%23fff%27%20d%3D%27M0%200h15.83v15.21H0z%27%2F%3E%3C%2FclipPath%3E%3C%2Fdefs%3E%3C%2Fsvg%3E)
Packages
- ffmpeg - Tools for transcoding, streaming and playing of multimedia files
Details
Zeng Yunxiang and Song Jiaxuan discovered that FFmpeg incorrectly handled
certain input files. An attacker could possibly use this issue to cause
FFmpeg to crash, resulting in a denial of service, or potential arbitrary
code execution. This issue only affected Ubuntu 24.04 LTS. (CVE-2023-49501)
Zeng Yunxiang and Song Jiaxuan discovered that FFmpeg incorrectly handled
certain input files. An attacker could possibly use this issue to cause
FFmpeg to crash, resulting in a denial of service, or potential arbitrary
code execution. This issue only affected Ubuntu 18.04 LTS,
Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 23.10 and Ubuntu 24.04 LTS.
(CVE-2023-49502)
Zhang Ling and Zeng Yunxiang discovered that FFmpeg incorrectly handled
certain input files. An attacker could possibly use this issue to cause
FFmpeg to crash, resulting in a denial of service, or...
Zeng Yunxiang and Song Jiaxuan discovered that FFmpeg incorrectly handled
certain input files. An attacker could possibly use this issue to cause
FFmpeg to crash, resulting in a denial of service, or potential arbitrary
code execution. This issue only affected Ubuntu 24.04 LTS. (CVE-2023-49501)
Zeng Yunxiang and Song Jiaxuan discovered that FFmpeg incorrectly handled
certain input files. An attacker could possibly use this issue to cause
FFmpeg to crash, resulting in a denial of service, or potential arbitrary
code execution. This issue only affected Ubuntu 18.04 LTS,
Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 23.10 and Ubuntu 24.04 LTS.
(CVE-2023-49502)
Zhang Ling and Zeng Yunxiang discovered that FFmpeg incorrectly handled
certain input files. An attacker could possibly use this issue to cause
FFmpeg to crash, resulting in a denial of service, or potential arbitrary
code execution. This issue only affected Ubuntu 23.10 and
Ubuntu 24.04 LTS. (CVE-2023-49528)
Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input
files. An attacker could possibly use this issue to cause FFmpeg to crash,
resulting in a denial of service, or potential arbitrary code execution.
This issue only affected Ubuntu 23.10 and Ubuntu 24.04 LTS.
(CVE-2023-50007)
Zeng Yunxiang and Song Jiaxuan discovered that FFmpeg incorrectly handled
certain input files. An attacker could possibly use this issue to cause
FFmpeg to crash, resulting in a denial of service, or potential arbitrary
code execution. This issue only affected Ubuntu 23.10 and
Ubuntu 24.04 LTS. (CVE-2023-50008)
Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input
files. An attacker could possibly use this issue to cause FFmpeg to crash,
resulting in a denial of service, or potential arbitrary code execution.
This issue only affected Ubuntu 23.10. (CVE-2023-50009)
Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input
files. An attacker could possibly use this issue to cause FFmpeg to crash,
resulting in a denial of service, or potential arbitrary code execution.
This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS,
Ubuntu 20.04 LTS, Ubuntu 22.04 LTS and Ubuntu 23.10. (CVE-2023-50010)
Zeng Yunxiang and Li Zeyuan discovered that FFmpeg incorrectly handled
certain input files. An attacker could possibly use this issue to cause
FFmpeg to crash, resulting in a denial of service, or potential arbitrary
code execution. This issue only affected Ubuntu 22.04 LTS and
Ubuntu 23.10. (CVE-2023-51793)
Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input
files. An attacker could possibly use this issue to cause FFmpeg to crash,
resulting in a denial of service, or potential arbitrary code execution.
This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS,
Ubuntu 22.04 LTS and Ubuntu 23.10. (CVE-2023-51794, CVE-2023-51798)
Zeng Yunxiang discovered that FFmpeg incorrectly handled certain input
files. An attacker could possibly use this issue to cause FFmpeg to crash,
resulting in a denial of service, or potential arbitrary code execution.
This issue only affected Ubuntu 23.10. (CVE-2023-51795, CVE-2023-51796)
It was discovered that discovered that FFmpeg incorrectly handled certain
input files. An attacker could possibly use this issue to cause FFmpeg to
crash, resulting in a denial of service, or potential arbitrary code
execution. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS,
Ubuntu 22.04 LTS, Ubuntu 23.10 and Ubuntu 24.04 LTS. (CVE-2024-31578)
It was discovered that discovered that FFmpeg incorrectly handled certain
input files. An attacker could possibly use this issue to cause FFmpeg to
crash, resulting in a denial of service, or potential arbitrary code
execution. This issue only affected Ubuntu 23.10 and Ubuntu 24.04 LTS.
(CVE-2024-31582)
It was discovered that discovered that FFmpeg incorrectly handled certain
input files. An attacker could possibly use this issue to cause FFmpeg to
crash, resulting in a denial of service, or potential arbitrary code
execution. This issue only affected Ubuntu 23.10. (CVE-2024-31585)
Update instructions
In general, a standard system update will make all the necessary changes.
Learn more about how to get the fixes.The problem can be corrected by updating your system to the following package versions:
| Ubuntu Release | Package Version | ||
|---|---|---|---|
| 24.04 noble | ffmpeg – 7:6.1.1-3ubuntu5+esm1 | ||
| libavcodec-extra60 – 7:6.1.1-3ubuntu5+esm1 | |||
| libavcodec60 – 7:6.1.1-3ubuntu5+esm1 | |||
| libavdevice60 – 7:6.1.1-3ubuntu5+esm1 | |||
| libavfilter-extra9 – 7:6.1.1-3ubuntu5+esm1 | |||
| libavfilter9 – 7:6.1.1-3ubuntu5+esm1 | |||
| libavformat-extra60 – 7:6.1.1-3ubuntu5+esm1 | |||
| libavformat60 – 7:6.1.1-3ubuntu5+esm1 | |||
| libavutil58 – 7:6.1.1-3ubuntu5+esm1 | |||
| libpostproc57 – 7:6.1.1-3ubuntu5+esm1 | |||
| libswresample4 – 7:6.1.1-3ubuntu5+esm1 | |||
| libswscale7 – 7:6.1.1-3ubuntu5+esm1 | |||
| 23.10 mantic | ffmpeg – 7:6.0-6ubuntu1.1 | ||
| libavcodec-extra60 – 7:6.0-6ubuntu1.1 | |||
| libavcodec60 – 7:6.0-6ubuntu1.1 | |||
| libavdevice60 – 7:6.0-6ubuntu1.1 | |||
| libavfilter-extra9 – 7:6.0-6ubuntu1.1 | |||
| libavfilter9 – 7:6.0-6ubuntu1.1 | |||
| libavformat-extra60 – 7:6.0-6ubuntu1.1 | |||
| libavformat60 – 7:6.0-6ubuntu1.1 | |||
| libavutil58 – 7:6.0-6ubuntu1.1 | |||
| libpostproc57 – 7:6.0-6ubuntu1.1 | |||
| libswresample4 – 7:6.0-6ubuntu1.1 | |||
| libswscale7 – 7:6.0-6ubuntu1.1 | |||
| 22.04 jammy | ffmpeg – 7:4.4.2-0ubuntu0.22.04.1+esm4 | ||
| libavcodec-extra58 – 7:4.4.2-0ubuntu0.22.04.1+esm4 | |||
| libavcodec58 – 7:4.4.2-0ubuntu0.22.04.1+esm4 | |||
| libavdevice58 – 7:4.4.2-0ubuntu0.22.04.1+esm4 | |||
| libavfilter-extra7 – 7:4.4.2-0ubuntu0.22.04.1+esm4 | |||
| libavfilter7 – 7:4.4.2-0ubuntu0.22.04.1+esm4 | |||
| libavformat-extra – 7:4.4.2-0ubuntu0.22.04.1+esm4 | |||
| libavformat-extra58 – 7:4.4.2-0ubuntu0.22.04.1+esm4 | |||
| libavformat58 – 7:4.4.2-0ubuntu0.22.04.1+esm4 | |||
| libavutil56 – 7:4.4.2-0ubuntu0.22.04.1+esm4 | |||
| libpostproc55 – 7:4.4.2-0ubuntu0.22.04.1+esm4 | |||
| libswresample3 – 7:4.4.2-0ubuntu0.22.04.1+esm4 | |||
| libswscale5 – 7:4.4.2-0ubuntu0.22.04.1+esm4 | |||
| 20.04 focal | ffmpeg – 7:4.2.7-0ubuntu0.1+esm5 | ||
| libavcodec-extra58 – 7:4.2.7-0ubuntu0.1+esm5 | |||
| libavcodec58 – 7:4.2.7-0ubuntu0.1+esm5 | |||
| libavdevice58 – 7:4.2.7-0ubuntu0.1+esm5 | |||
| libavfilter-extra7 – 7:4.2.7-0ubuntu0.1+esm5 | |||
| libavfilter7 – 7:4.2.7-0ubuntu0.1+esm5 | |||
| libavformat58 – 7:4.2.7-0ubuntu0.1+esm5 | |||
| libavresample4 – 7:4.2.7-0ubuntu0.1+esm5 | |||
| libavutil56 – 7:4.2.7-0ubuntu0.1+esm5 | |||
| libpostproc55 – 7:4.2.7-0ubuntu0.1+esm5 | |||
| libswresample3 – 7:4.2.7-0ubuntu0.1+esm5 | |||
| libswscale5 – 7:4.2.7-0ubuntu0.1+esm5 | |||
| 18.04 bionic | ffmpeg – 7:3.4.11-0ubuntu0.1+esm5 | ||
| libavcodec-extra57 – 7:3.4.11-0ubuntu0.1+esm5 | |||
| libavcodec57 – 7:3.4.11-0ubuntu0.1+esm5 | |||
| libavdevice57 – 7:3.4.11-0ubuntu0.1+esm5 | |||
| libavfilter-extra6 – 7:3.4.11-0ubuntu0.1+esm5 | |||
| libavfilter6 – 7:3.4.11-0ubuntu0.1+esm5 | |||
| libavformat57 – 7:3.4.11-0ubuntu0.1+esm5 | |||
| libavresample3 – 7:3.4.11-0ubuntu0.1+esm5 | |||
| libavutil55 – 7:3.4.11-0ubuntu0.1+esm5 | |||
| libpostproc54 – 7:3.4.11-0ubuntu0.1+esm5 | |||
| libswresample2 – 7:3.4.11-0ubuntu0.1+esm5 | |||
| libswscale4 – 7:3.4.11-0ubuntu0.1+esm5 | |||
| 16.04 xenial | ffmpeg – 7:2.8.17-0ubuntu0.1+esm7 | ||
| libavcodec-ffmpeg-extra56 – 7:2.8.17-0ubuntu0.1+esm7 | |||
| libavcodec-ffmpeg56 – 7:2.8.17-0ubuntu0.1+esm7 | |||
| libavdevice-ffmpeg56 – 7:2.8.17-0ubuntu0.1+esm7 | |||
| libavfilter-ffmpeg5 – 7:2.8.17-0ubuntu0.1+esm7 | |||
| libavformat-ffmpeg56 – 7:2.8.17-0ubuntu0.1+esm7 | |||
| libavresample-ffmpeg2 – 7:2.8.17-0ubuntu0.1+esm7 | |||
| libavutil-ffmpeg54 – 7:2.8.17-0ubuntu0.1+esm7 | |||
| libpostproc-ffmpeg53 – 7:2.8.17-0ubuntu0.1+esm7 | |||
| libswresample-ffmpeg1 – 7:2.8.17-0ubuntu0.1+esm7 | |||
| libswscale-ffmpeg3 – 7:2.8.17-0ubuntu0.1+esm7 | |||
Reduce your security exposure
Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.
References
- CVE-2024-31585
- CVE-2024-31582
- CVE-2024-31578
- CVE-2023-51798
- CVE-2023-51796
- CVE-2023-51795
- CVE-2023-51794
- CVE-2023-51793
- CVE-2023-50010
- CVE-2023-50009
- CVE-2024-31585
- CVE-2024-31582
- CVE-2024-31578
- CVE-2023-51798
- CVE-2023-51796
- CVE-2023-51795
- CVE-2023-51794
- CVE-2023-51793
- CVE-2023-50010
- CVE-2023-50009
- CVE-2023-50008
- CVE-2023-50007
- CVE-2023-49528
- CVE-2023-49502
- CVE-2023-49501