vulnerability
Ubuntu: USN-5958-1 (CVE-2022-3964): FFmpeg vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Nov 13, 2022 | Mar 22, 2023 | Aug 18, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Nov 13, 2022
Added
Mar 22, 2023
Modified
Aug 18, 2025
Description
A vulnerability classified as problematic has been found in ffmpeg. This affects an unknown part of the file libavcodec/rpzaenc.c of the component QuickTime RPZA Video Encoder. The manipulation of the argument y_size leads to out-of-bounds read. It is possible to initiate the attack remotely. The name of the patch is 92f9b28ed84a77138105475beba16c146bdaf984. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-213543.
Solutions
ubuntu-pro-upgrade-ffmpegubuntu-pro-upgrade-libavcodec-extraubuntu-pro-upgrade-libavcodec-extra58ubuntu-pro-upgrade-libavcodec-extra59ubuntu-pro-upgrade-libavcodec58ubuntu-pro-upgrade-libavcodec59ubuntu-pro-upgrade-libavdevice58ubuntu-pro-upgrade-libavdevice59ubuntu-pro-upgrade-libavfilter-extraubuntu-pro-upgrade-libavfilter-extra7ubuntu-pro-upgrade-libavfilter-extra8ubuntu-pro-upgrade-libavfilter7ubuntu-pro-upgrade-libavfilter8ubuntu-pro-upgrade-libavformat-extraubuntu-pro-upgrade-libavformat-extra58ubuntu-pro-upgrade-libavformat-extra59ubuntu-pro-upgrade-libavformat58ubuntu-pro-upgrade-libavformat59ubuntu-pro-upgrade-libavutil56ubuntu-pro-upgrade-libavutil57ubuntu-pro-upgrade-libpostproc55ubuntu-pro-upgrade-libpostproc56ubuntu-pro-upgrade-libswresample3ubuntu-pro-upgrade-libswresample4ubuntu-pro-upgrade-libswscale5ubuntu-pro-upgrade-libswscale6
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.