vulnerability

Ubuntu: (Multiple Advisories) (CVE-2019-17539): FFmpeg vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	Oct 14, 2019	Aug 5, 2020	Aug 18, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

Oct 14, 2019

Added

Aug 5, 2020

Modified

Aug 18, 2025

Description

In FFmpeg before 4.2, avcodec_open2 in libavcodec/utils.c allows a NULL pointer dereference and possibly unspecified other impact when there is no valid close function pointer.

Solutions

ubuntu-upgrade-ffmpegubuntu-upgrade-libavcodec-extra57ubuntu-upgrade-libavcodec57ubuntu-upgrade-libavdevice57ubuntu-upgrade-libavfilter-extra6ubuntu-upgrade-libavfilter6ubuntu-upgrade-libavformat57ubuntu-upgrade-libavresample3ubuntu-upgrade-libavutil55ubuntu-upgrade-libpostproc54ubuntu-upgrade-libswresample2ubuntu-upgrade-libswscale4

References

CVE-2019-17539
https://attackerkb.com/topics/CVE-2019-17539
CWE-476
DEBIAN-DSA-4722
NVD-CVE-2019-17539
UBUNTU-USN-3967-1
UBUNTU-USN-4431-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today