Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package ffmpeg-5 for openSUSE:Factory checked in at 2024-09-17 18:18:51 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/ffmpeg-5 (Old) and /work/SRC/openSUSE:Factory/.ffmpeg-5.new.29891 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ffmpeg-5" Tue Sep 17 18:18:51 2024 rev:31 rq:1201543 version:5.1.4 Changes: -------- --- /work/SRC/openSUSE:Factory/ffmpeg-5/ffmpeg-5.changes 2024-09-04 13:27:06.888017406 +0200 +++ /work/SRC/openSUSE:Factory/.ffmpeg-5.new.29891/ffmpeg-5.changes 2024-09-17 18:19:48.759001875 +0200 @@ -1,0 +2,8 @@ +Fri Sep 6 15:06:21 UTC 2024 - Cliff Zhao <qz...@suse.com> + +- Add ffmpeg-5-CVE-2024-7055.patch: + Backporting 3faadbe2 from upstream, Use 64bit for input size check, + Fixes: out of array read, Fixes: poc3. + (CVE-2024-7055, bsc#1229026) + +------------------------------------------------------------------- @@ -51 +59 @@ - (CVE-2023-50010 bsc#1223256) + (CVE-2023-50010, bsc#1223256) @@ -65 +73 @@ - (CVE-2023-50009 bsc#1223255) + (CVE-2023-50009, bsc#1223255) @@ -73 +81 @@ - (CVE-2023-50009 bsc#1223255) + (CVE-2023-50009, bsc#1223255) @@ -80 +88 @@ - (CVE-2023-51793 bsc#1223272) + (CVE-2023-51793, bsc#1223272) @@ -88 +96 @@ - (CVE-2023-49502 bsc#1223235) + (CVE-2023-49502, bsc#1223235) @@ -95 +103 @@ - (CVE-2023-50008 bsc#1223254) + (CVE-2023-50008, bsc#1223254) @@ -102 +110 @@ - (CVE-2023-50007 bsc#1223253) + (CVE-2023-50007, bsc#1223253) New: ---- ffmpeg-5-CVE-2024-7055.patch BETA DEBUG BEGIN: New: - Add ffmpeg-5-CVE-2024-7055.patch: Backporting 3faadbe2 from upstream, Use 64bit for input size check, BETA DEBUG END: ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ ffmpeg-5.spec ++++++ --- /var/tmp/diff_new_pack.DtjjTM/_old 2024-09-17 18:19:50.015052656 +0200 +++ /var/tmp/diff_new_pack.DtjjTM/_new 2024-09-17 18:19:50.015052656 +0200 @@ -127,6 +127,7 @@ Patch100: ffmpeg-CVE-2023-50010.patch Patch102: ffmpeg-5-CVE-2024-32230.patch Patch103: ffmpeg-5-CVE-2024-7272.patch +Patch104: ffmpeg-5-CVE-2024-7055.patch # # preamble is present twice, watch out # ++++++ _scmsync.obsinfo ++++++ --- /var/tmp/diff_new_pack.DtjjTM/_old 2024-09-17 18:19:50.111056538 +0200 +++ /var/tmp/diff_new_pack.DtjjTM/_new 2024-09-17 18:19:50.115056699 +0200 @@ -1,4 +1,4 @@ -mtime: 1725238028 -commit: f7cbde4c4585e82dbaf00774b029e89a77dd6840681582736eedb198aac1be87 +mtime: 1726540366 +commit: 32ade1364a64337cc79a9b987d6f14d1f98d7d2d997f3c40984921e41d43da3c url: https://src.opensuse.org/jengelh/ffmpeg-5.git ++++++ ffmpeg-5-CVE-2024-7055.patch ++++++ >From 3faadbe2a27e74ff5bb5f7904ec27bb1f5287dc8 Mon Sep 17 00:00:00 2001 From: Michael Niedermayer <mich...@niedermayer.cc> Date: Thu, 18 Jul 2024 21:12:54 +0200 Subject: [PATCH] avcodec/pnmdec: Use 64bit for input size check References: CVE-2024-7055 References: bsc#1229026 Upstream: Backport from upstream Fixes: out of array read Fixes: poc3 Reported-by: VulDB CNA Team Found-by: CookedMelon Signed-off-by: Michael Niedermayer <mich...@niedermayer.cc> --- libavcodec/pnmdec.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) --- ffmpeg-5.1.4/libavcodec/pnmdec.c +++ ffmpeg-5.1.4_new/libavcodec/pnmdec.c @@ -260,7 +260,7 @@ break; case AV_PIX_FMT_GBRPF32: if (!s->half) { - if (avctx->width * avctx->height * 12 > s->bytestream_end - s->bytestream) + if (avctx->width * avctx->height * 12LL > s->bytestream_end - s->bytestream) return AVERROR_INVALIDDATA; scale = 1.f / s->scale; if (s->endian) {
