SUSE update for ffmpeg
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 7 |
| CVE-ID | CVE-2023-51793 CVE-2024-35365 CVE-2024-35368 CVE-2024-36613 CVE-2025-0518 CVE-2025-22919 CVE-2025-22921 |
| CWE-ID | CWE-119 CWE-415 CWE-190 CWE-125 CWE-617 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
SUSE Linux Enterprise High Performance Computing LTSS 15 Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing ESPOS 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 SP5 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 SP3 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 SP4 Operating systems & Components / Operating system SUSE Linux Enterprise Workstation Extension 15 Operating systems & Components / Operating system Desktop Applications Module Operating systems & Components / Operating system SUSE Package Hub 15 Operating systems & Components / Operating system SUSE Linux Enterprise Real Time 15 Operating systems & Components / Operating system openSUSE Leap Operating systems & Components / Operating system SUSE Linux Enterprise Server for SAP Applications 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 Operating systems & Components / Operating system SUSE Linux Enterprise Desktop 15 Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing 15 Operating systems & Components / Operating system SUSE Enterprise Storage Operating systems & Components / Operating system libavcodec57-32bit Operating systems & Components / Operating system package or component libswscale4-32bit-debuginfo Operating systems & Components / Operating system package or component libavfilter6-32bit-debuginfo Operating systems & Components / Operating system package or component libswscale4-32bit Operating systems & Components / Operating system package or component libavutil55-32bit Operating systems & Components / Operating system package or component libavresample3-32bit-debuginfo Operating systems & Components / Operating system package or component libavdevice57-32bit Operating systems & Components / Operating system package or component libpostproc54-32bit-debuginfo Operating systems & Components / Operating system package or component libswresample2-32bit-debuginfo Operating systems & Components / Operating system package or component libavformat57-32bit Operating systems & Components / Operating system package or component libswresample2-32bit Operating systems & Components / Operating system package or component libavformat57-32bit-debuginfo Operating systems & Components / Operating system package or component libavutil55-32bit-debuginfo Operating systems & Components / Operating system package or component libavfilter6-32bit Operating systems & Components / Operating system package or component libavcodec57-32bit-debuginfo Operating systems & Components / Operating system package or component libavresample3-32bit Operating systems & Components / Operating system package or component libavdevice57-32bit-debuginfo Operating systems & Components / Operating system package or component libpostproc54-32bit Operating systems & Components / Operating system package or component libavformat57-debuginfo Operating systems & Components / Operating system package or component libavformat-devel Operating systems & Components / Operating system package or component libavfilter6 Operating systems & Components / Operating system package or component ffmpeg-private-devel Operating systems & Components / Operating system package or component libavfilter6-debuginfo Operating systems & Components / Operating system package or component libavformat57 Operating systems & Components / Operating system package or component libavdevice57 Operating systems & Components / Operating system package or component libavcodec57 Operating systems & Components / Operating system package or component libswresample2 Operating systems & Components / Operating system package or component libswscale4 Operating systems & Components / Operating system package or component libavdevice-devel Operating systems & Components / Operating system package or component libpostproc54 Operating systems & Components / Operating system package or component libavutil55 Operating systems & Components / Operating system package or component libavfilter-devel Operating systems & Components / Operating system package or component libavdevice57-debuginfo Operating systems & Components / Operating system package or component libavresample3 Operating systems & Components / Operating system package or component libavutil55-debuginfo Operating systems & Components / Operating system package or component libavresample-devel Operating systems & Components / Operating system package or component libavcodec57-debuginfo Operating systems & Components / Operating system package or component libswscale-devel Operating systems & Components / Operating system package or component libavresample3-debuginfo Operating systems & Components / Operating system package or component libavcodec-devel Operating systems & Components / Operating system package or component libswresample2-debuginfo Operating systems & Components / Operating system package or component ffmpeg-debuginfo Operating systems & Components / Operating system package or component ffmpeg-debugsource Operating systems & Components / Operating system package or component libpostproc-devel Operating systems & Components / Operating system package or component ffmpeg Operating systems & Components / Operating system package or component libavutil-devel Operating systems & Components / Operating system package or component libswresample-devel Operating systems & Components / Operating system package or component libswscale4-debuginfo Operating systems & Components / Operating system package or component libpostproc54-debuginfo Operating systems & Components / Operating system package or component |
| Vendor | SUSE |
Security Bulletin
This security bulletin contains information about 7 vulnerabilities.
1) Buffer overflow
EUVDB-ID: #VU89306
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2023-51793
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error in image_copy_plane() function in libavutil/imgutils.c. A remote attacker can pass specially crafted input to the application, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package ffmpeg to the latest version.
Vulnerable software versionsSUSE Linux Enterprise High Performance Computing LTSS 15: SP3 - SP5
SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4 - SP5
SUSE Linux Enterprise Server 15 SP5: LTSS
SUSE Linux Enterprise Server 15 SP3: LTSS
SUSE Linux Enterprise Server 15 SP4: LTSS
SUSE Linux Enterprise Workstation Extension 15: SP6
Desktop Applications Module: 15-SP6
SUSE Package Hub 15: 15-SP6
SUSE Linux Enterprise Real Time 15: SP6
openSUSE Leap: 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP3 - SP6
SUSE Linux Enterprise Server 15: SP3 - SP6
SUSE Linux Enterprise Desktop 15: SP6
SUSE Linux Enterprise High Performance Computing 15: SP3 - SP5
SUSE Enterprise Storage: 7.1
libavcodec57-32bit: before 3.4.2-150200.11.60.1
libswscale4-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswscale4-32bit: before 3.4.2-150200.11.60.1
libavutil55-32bit: before 3.4.2-150200.11.60.1
libavresample3-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavdevice57-32bit: before 3.4.2-150200.11.60.1
libpostproc54-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswresample2-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavformat57-32bit: before 3.4.2-150200.11.60.1
libswresample2-32bit: before 3.4.2-150200.11.60.1
libavformat57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavutil55-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit: before 3.4.2-150200.11.60.1
libavcodec57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavresample3-32bit: before 3.4.2-150200.11.60.1
libavdevice57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-32bit: before 3.4.2-150200.11.60.1
libavformat57-debuginfo: before 3.4.2-150200.11.60.1
libavformat-devel: before 3.4.2-150200.11.60.1
libavfilter6: before 3.4.2-150200.11.60.1
ffmpeg-private-devel: before 3.4.2-150200.11.60.1
libavfilter6-debuginfo: before 3.4.2-150200.11.60.1
libavformat57: before 3.4.2-150200.11.60.1
libavdevice57: before 3.4.2-150200.11.60.1
libavcodec57: before 3.4.2-150200.11.60.1
libswresample2: before 3.4.2-150200.11.60.1
libswscale4: before 3.4.2-150200.11.60.1
libavdevice-devel: before 3.4.2-150200.11.60.1
libpostproc54: before 3.4.2-150200.11.60.1
libavutil55: before 3.4.2-150200.11.60.1
libavfilter-devel: before 3.4.2-150200.11.60.1
libavdevice57-debuginfo: before 3.4.2-150200.11.60.1
libavresample3: before 3.4.2-150200.11.60.1
libavutil55-debuginfo: before 3.4.2-150200.11.60.1
libavresample-devel: before 3.4.2-150200.11.60.1
libavcodec57-debuginfo: before 3.4.2-150200.11.60.1
libswscale-devel: before 3.4.2-150200.11.60.1
libavresample3-debuginfo: before 3.4.2-150200.11.60.1
libavcodec-devel: before 3.4.2-150200.11.60.1
libswresample2-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debugsource: before 3.4.2-150200.11.60.1
libpostproc-devel: before 3.4.2-150200.11.60.1
ffmpeg: before 3.4.2-150200.11.60.1
libavutil-devel: before 3.4.2-150200.11.60.1
libswresample-devel: before 3.4.2-150200.11.60.1
libswscale4-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-debuginfo: before 3.4.2-150200.11.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp5:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp3:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp4:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:desktop_applications_module:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_enterprise_storage:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:suse:libavcodec57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-private-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-debuginfo:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2025/suse-su-20251450-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Double free
EUVDB-ID: #VU103288
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-35365
CWE-ID:
CWE-415 - Double Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error within the new_stream_audio() function in fftools/ffmpeg_mux_init.c. A remote attacker can pass specially crafted data to the application, trigger double free error and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package ffmpeg to the latest version.
Vulnerable software versionsSUSE Linux Enterprise High Performance Computing LTSS 15: SP3 - SP5
SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4 - SP5
SUSE Linux Enterprise Server 15 SP5: LTSS
SUSE Linux Enterprise Server 15 SP3: LTSS
SUSE Linux Enterprise Server 15 SP4: LTSS
SUSE Linux Enterprise Workstation Extension 15: SP6
Desktop Applications Module: 15-SP6
SUSE Package Hub 15: 15-SP6
SUSE Linux Enterprise Real Time 15: SP6
openSUSE Leap: 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP3 - SP6
SUSE Linux Enterprise Server 15: SP3 - SP6
SUSE Linux Enterprise Desktop 15: SP6
SUSE Linux Enterprise High Performance Computing 15: SP3 - SP5
SUSE Enterprise Storage: 7.1
libavcodec57-32bit: before 3.4.2-150200.11.60.1
libswscale4-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswscale4-32bit: before 3.4.2-150200.11.60.1
libavutil55-32bit: before 3.4.2-150200.11.60.1
libavresample3-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavdevice57-32bit: before 3.4.2-150200.11.60.1
libpostproc54-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswresample2-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavformat57-32bit: before 3.4.2-150200.11.60.1
libswresample2-32bit: before 3.4.2-150200.11.60.1
libavformat57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavutil55-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit: before 3.4.2-150200.11.60.1
libavcodec57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavresample3-32bit: before 3.4.2-150200.11.60.1
libavdevice57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-32bit: before 3.4.2-150200.11.60.1
libavformat57-debuginfo: before 3.4.2-150200.11.60.1
libavformat-devel: before 3.4.2-150200.11.60.1
libavfilter6: before 3.4.2-150200.11.60.1
ffmpeg-private-devel: before 3.4.2-150200.11.60.1
libavfilter6-debuginfo: before 3.4.2-150200.11.60.1
libavformat57: before 3.4.2-150200.11.60.1
libavdevice57: before 3.4.2-150200.11.60.1
libavcodec57: before 3.4.2-150200.11.60.1
libswresample2: before 3.4.2-150200.11.60.1
libswscale4: before 3.4.2-150200.11.60.1
libavdevice-devel: before 3.4.2-150200.11.60.1
libpostproc54: before 3.4.2-150200.11.60.1
libavutil55: before 3.4.2-150200.11.60.1
libavfilter-devel: before 3.4.2-150200.11.60.1
libavdevice57-debuginfo: before 3.4.2-150200.11.60.1
libavresample3: before 3.4.2-150200.11.60.1
libavutil55-debuginfo: before 3.4.2-150200.11.60.1
libavresample-devel: before 3.4.2-150200.11.60.1
libavcodec57-debuginfo: before 3.4.2-150200.11.60.1
libswscale-devel: before 3.4.2-150200.11.60.1
libavresample3-debuginfo: before 3.4.2-150200.11.60.1
libavcodec-devel: before 3.4.2-150200.11.60.1
libswresample2-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debugsource: before 3.4.2-150200.11.60.1
libpostproc-devel: before 3.4.2-150200.11.60.1
ffmpeg: before 3.4.2-150200.11.60.1
libavutil-devel: before 3.4.2-150200.11.60.1
libswresample-devel: before 3.4.2-150200.11.60.1
libswscale4-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-debuginfo: before 3.4.2-150200.11.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp5:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp3:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp4:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:desktop_applications_module:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_enterprise_storage:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:suse:libavcodec57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-private-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-debuginfo:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2025/suse-su-20251450-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Double free
EUVDB-ID: #VU101882
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2024-35368
CWE-ID:
CWE-415 - Double Free
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error within the rkmpp_retrieve_frame() function in libavcodec/rkmppdec.c. A remote attacker can pass specially crafted data to the application, trigger double free error and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package ffmpeg to the latest version.
Vulnerable software versionsSUSE Linux Enterprise High Performance Computing LTSS 15: SP3 - SP5
SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4 - SP5
SUSE Linux Enterprise Server 15 SP5: LTSS
SUSE Linux Enterprise Server 15 SP3: LTSS
SUSE Linux Enterprise Server 15 SP4: LTSS
SUSE Linux Enterprise Workstation Extension 15: SP6
Desktop Applications Module: 15-SP6
SUSE Package Hub 15: 15-SP6
SUSE Linux Enterprise Real Time 15: SP6
openSUSE Leap: 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP3 - SP6
SUSE Linux Enterprise Server 15: SP3 - SP6
SUSE Linux Enterprise Desktop 15: SP6
SUSE Linux Enterprise High Performance Computing 15: SP3 - SP5
SUSE Enterprise Storage: 7.1
libavcodec57-32bit: before 3.4.2-150200.11.60.1
libswscale4-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswscale4-32bit: before 3.4.2-150200.11.60.1
libavutil55-32bit: before 3.4.2-150200.11.60.1
libavresample3-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavdevice57-32bit: before 3.4.2-150200.11.60.1
libpostproc54-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswresample2-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavformat57-32bit: before 3.4.2-150200.11.60.1
libswresample2-32bit: before 3.4.2-150200.11.60.1
libavformat57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavutil55-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit: before 3.4.2-150200.11.60.1
libavcodec57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavresample3-32bit: before 3.4.2-150200.11.60.1
libavdevice57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-32bit: before 3.4.2-150200.11.60.1
libavformat57-debuginfo: before 3.4.2-150200.11.60.1
libavformat-devel: before 3.4.2-150200.11.60.1
libavfilter6: before 3.4.2-150200.11.60.1
ffmpeg-private-devel: before 3.4.2-150200.11.60.1
libavfilter6-debuginfo: before 3.4.2-150200.11.60.1
libavformat57: before 3.4.2-150200.11.60.1
libavdevice57: before 3.4.2-150200.11.60.1
libavcodec57: before 3.4.2-150200.11.60.1
libswresample2: before 3.4.2-150200.11.60.1
libswscale4: before 3.4.2-150200.11.60.1
libavdevice-devel: before 3.4.2-150200.11.60.1
libpostproc54: before 3.4.2-150200.11.60.1
libavutil55: before 3.4.2-150200.11.60.1
libavfilter-devel: before 3.4.2-150200.11.60.1
libavdevice57-debuginfo: before 3.4.2-150200.11.60.1
libavresample3: before 3.4.2-150200.11.60.1
libavutil55-debuginfo: before 3.4.2-150200.11.60.1
libavresample-devel: before 3.4.2-150200.11.60.1
libavcodec57-debuginfo: before 3.4.2-150200.11.60.1
libswscale-devel: before 3.4.2-150200.11.60.1
libavresample3-debuginfo: before 3.4.2-150200.11.60.1
libavcodec-devel: before 3.4.2-150200.11.60.1
libswresample2-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debugsource: before 3.4.2-150200.11.60.1
libpostproc-devel: before 3.4.2-150200.11.60.1
ffmpeg: before 3.4.2-150200.11.60.1
libavutil-devel: before 3.4.2-150200.11.60.1
libswresample-devel: before 3.4.2-150200.11.60.1
libswscale4-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-debuginfo: before 3.4.2-150200.11.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp5:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp3:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp4:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:desktop_applications_module:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_enterprise_storage:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:suse:libavcodec57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-private-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-debuginfo:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2025/suse-su-20251450-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Integer overflow
EUVDB-ID: #VU107133
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2024-36613
CWE-ID:
CWE-190 - Integer overflow
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to integer overflow within the dxa_read_header() function in libavformat/dxa.c. A remote attacker can pass specially crafted image to the application, trigger integer overflow and perform a denial of service (DoS) attack.
MitigationUpdate the affected package ffmpeg to the latest version.
Vulnerable software versionsSUSE Linux Enterprise High Performance Computing LTSS 15: SP3 - SP5
SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4 - SP5
SUSE Linux Enterprise Server 15 SP5: LTSS
SUSE Linux Enterprise Server 15 SP3: LTSS
SUSE Linux Enterprise Server 15 SP4: LTSS
SUSE Linux Enterprise Workstation Extension 15: SP6
Desktop Applications Module: 15-SP6
SUSE Package Hub 15: 15-SP6
SUSE Linux Enterprise Real Time 15: SP6
openSUSE Leap: 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP3 - SP6
SUSE Linux Enterprise Server 15: SP3 - SP6
SUSE Linux Enterprise Desktop 15: SP6
SUSE Linux Enterprise High Performance Computing 15: SP3 - SP5
SUSE Enterprise Storage: 7.1
libavcodec57-32bit: before 3.4.2-150200.11.60.1
libswscale4-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswscale4-32bit: before 3.4.2-150200.11.60.1
libavutil55-32bit: before 3.4.2-150200.11.60.1
libavresample3-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavdevice57-32bit: before 3.4.2-150200.11.60.1
libpostproc54-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswresample2-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavformat57-32bit: before 3.4.2-150200.11.60.1
libswresample2-32bit: before 3.4.2-150200.11.60.1
libavformat57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavutil55-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit: before 3.4.2-150200.11.60.1
libavcodec57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavresample3-32bit: before 3.4.2-150200.11.60.1
libavdevice57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-32bit: before 3.4.2-150200.11.60.1
libavformat57-debuginfo: before 3.4.2-150200.11.60.1
libavformat-devel: before 3.4.2-150200.11.60.1
libavfilter6: before 3.4.2-150200.11.60.1
ffmpeg-private-devel: before 3.4.2-150200.11.60.1
libavfilter6-debuginfo: before 3.4.2-150200.11.60.1
libavformat57: before 3.4.2-150200.11.60.1
libavdevice57: before 3.4.2-150200.11.60.1
libavcodec57: before 3.4.2-150200.11.60.1
libswresample2: before 3.4.2-150200.11.60.1
libswscale4: before 3.4.2-150200.11.60.1
libavdevice-devel: before 3.4.2-150200.11.60.1
libpostproc54: before 3.4.2-150200.11.60.1
libavutil55: before 3.4.2-150200.11.60.1
libavfilter-devel: before 3.4.2-150200.11.60.1
libavdevice57-debuginfo: before 3.4.2-150200.11.60.1
libavresample3: before 3.4.2-150200.11.60.1
libavutil55-debuginfo: before 3.4.2-150200.11.60.1
libavresample-devel: before 3.4.2-150200.11.60.1
libavcodec57-debuginfo: before 3.4.2-150200.11.60.1
libswscale-devel: before 3.4.2-150200.11.60.1
libavresample3-debuginfo: before 3.4.2-150200.11.60.1
libavcodec-devel: before 3.4.2-150200.11.60.1
libswresample2-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debugsource: before 3.4.2-150200.11.60.1
libpostproc-devel: before 3.4.2-150200.11.60.1
ffmpeg: before 3.4.2-150200.11.60.1
libavutil-devel: before 3.4.2-150200.11.60.1
libswresample-devel: before 3.4.2-150200.11.60.1
libswscale4-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-debuginfo: before 3.4.2-150200.11.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp5:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp3:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp4:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:desktop_applications_module:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_enterprise_storage:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:suse:libavcodec57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-private-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-debuginfo:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2025/suse-su-20251450-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Out-of-bounds read
EUVDB-ID: #VU107058
Risk: Medium
CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-0518
CWE-ID:
CWE-125 - Out-of-bounds read
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in libavfilter/af_pan.c. A remote attacker can pass specially crafted input to the application, trigger an out-of-bounds read error and read contents of memory on the system.
MitigationUpdate the affected package ffmpeg to the latest version.
Vulnerable software versionsSUSE Linux Enterprise High Performance Computing LTSS 15: SP3 - SP5
SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4 - SP5
SUSE Linux Enterprise Server 15 SP5: LTSS
SUSE Linux Enterprise Server 15 SP3: LTSS
SUSE Linux Enterprise Server 15 SP4: LTSS
SUSE Linux Enterprise Workstation Extension 15: SP6
Desktop Applications Module: 15-SP6
SUSE Package Hub 15: 15-SP6
SUSE Linux Enterprise Real Time 15: SP6
openSUSE Leap: 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP3 - SP6
SUSE Linux Enterprise Server 15: SP3 - SP6
SUSE Linux Enterprise Desktop 15: SP6
SUSE Linux Enterprise High Performance Computing 15: SP3 - SP5
SUSE Enterprise Storage: 7.1
libavcodec57-32bit: before 3.4.2-150200.11.60.1
libswscale4-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswscale4-32bit: before 3.4.2-150200.11.60.1
libavutil55-32bit: before 3.4.2-150200.11.60.1
libavresample3-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavdevice57-32bit: before 3.4.2-150200.11.60.1
libpostproc54-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswresample2-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavformat57-32bit: before 3.4.2-150200.11.60.1
libswresample2-32bit: before 3.4.2-150200.11.60.1
libavformat57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavutil55-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit: before 3.4.2-150200.11.60.1
libavcodec57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavresample3-32bit: before 3.4.2-150200.11.60.1
libavdevice57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-32bit: before 3.4.2-150200.11.60.1
libavformat57-debuginfo: before 3.4.2-150200.11.60.1
libavformat-devel: before 3.4.2-150200.11.60.1
libavfilter6: before 3.4.2-150200.11.60.1
ffmpeg-private-devel: before 3.4.2-150200.11.60.1
libavfilter6-debuginfo: before 3.4.2-150200.11.60.1
libavformat57: before 3.4.2-150200.11.60.1
libavdevice57: before 3.4.2-150200.11.60.1
libavcodec57: before 3.4.2-150200.11.60.1
libswresample2: before 3.4.2-150200.11.60.1
libswscale4: before 3.4.2-150200.11.60.1
libavdevice-devel: before 3.4.2-150200.11.60.1
libpostproc54: before 3.4.2-150200.11.60.1
libavutil55: before 3.4.2-150200.11.60.1
libavfilter-devel: before 3.4.2-150200.11.60.1
libavdevice57-debuginfo: before 3.4.2-150200.11.60.1
libavresample3: before 3.4.2-150200.11.60.1
libavutil55-debuginfo: before 3.4.2-150200.11.60.1
libavresample-devel: before 3.4.2-150200.11.60.1
libavcodec57-debuginfo: before 3.4.2-150200.11.60.1
libswscale-devel: before 3.4.2-150200.11.60.1
libavresample3-debuginfo: before 3.4.2-150200.11.60.1
libavcodec-devel: before 3.4.2-150200.11.60.1
libswresample2-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debugsource: before 3.4.2-150200.11.60.1
libpostproc-devel: before 3.4.2-150200.11.60.1
ffmpeg: before 3.4.2-150200.11.60.1
libavutil-devel: before 3.4.2-150200.11.60.1
libswresample-devel: before 3.4.2-150200.11.60.1
libswscale4-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-debuginfo: before 3.4.2-150200.11.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp5:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp3:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp4:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:desktop_applications_module:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_enterprise_storage:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:suse:libavcodec57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-private-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-debuginfo:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2025/suse-su-20251450-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Reachable assertion
EUVDB-ID: #VU107134
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2025-22919
CWE-ID:
CWE-617 - Reachable Assertion
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a reachable assertion within the init_audio() function in libavfilter/buffersrc.c. A remote attacker can pass a specially crafted AAC file to the application, trigger an assertion failure and perform a denial of service (DoS) attack.
MitigationUpdate the affected package ffmpeg to the latest version.
Vulnerable software versionsSUSE Linux Enterprise High Performance Computing LTSS 15: SP3 - SP5
SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4 - SP5
SUSE Linux Enterprise Server 15 SP5: LTSS
SUSE Linux Enterprise Server 15 SP3: LTSS
SUSE Linux Enterprise Server 15 SP4: LTSS
SUSE Linux Enterprise Workstation Extension 15: SP6
Desktop Applications Module: 15-SP6
SUSE Package Hub 15: 15-SP6
SUSE Linux Enterprise Real Time 15: SP6
openSUSE Leap: 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP3 - SP6
SUSE Linux Enterprise Server 15: SP3 - SP6
SUSE Linux Enterprise Desktop 15: SP6
SUSE Linux Enterprise High Performance Computing 15: SP3 - SP5
SUSE Enterprise Storage: 7.1
libavcodec57-32bit: before 3.4.2-150200.11.60.1
libswscale4-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswscale4-32bit: before 3.4.2-150200.11.60.1
libavutil55-32bit: before 3.4.2-150200.11.60.1
libavresample3-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavdevice57-32bit: before 3.4.2-150200.11.60.1
libpostproc54-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswresample2-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavformat57-32bit: before 3.4.2-150200.11.60.1
libswresample2-32bit: before 3.4.2-150200.11.60.1
libavformat57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavutil55-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit: before 3.4.2-150200.11.60.1
libavcodec57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavresample3-32bit: before 3.4.2-150200.11.60.1
libavdevice57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-32bit: before 3.4.2-150200.11.60.1
libavformat57-debuginfo: before 3.4.2-150200.11.60.1
libavformat-devel: before 3.4.2-150200.11.60.1
libavfilter6: before 3.4.2-150200.11.60.1
ffmpeg-private-devel: before 3.4.2-150200.11.60.1
libavfilter6-debuginfo: before 3.4.2-150200.11.60.1
libavformat57: before 3.4.2-150200.11.60.1
libavdevice57: before 3.4.2-150200.11.60.1
libavcodec57: before 3.4.2-150200.11.60.1
libswresample2: before 3.4.2-150200.11.60.1
libswscale4: before 3.4.2-150200.11.60.1
libavdevice-devel: before 3.4.2-150200.11.60.1
libpostproc54: before 3.4.2-150200.11.60.1
libavutil55: before 3.4.2-150200.11.60.1
libavfilter-devel: before 3.4.2-150200.11.60.1
libavdevice57-debuginfo: before 3.4.2-150200.11.60.1
libavresample3: before 3.4.2-150200.11.60.1
libavutil55-debuginfo: before 3.4.2-150200.11.60.1
libavresample-devel: before 3.4.2-150200.11.60.1
libavcodec57-debuginfo: before 3.4.2-150200.11.60.1
libswscale-devel: before 3.4.2-150200.11.60.1
libavresample3-debuginfo: before 3.4.2-150200.11.60.1
libavcodec-devel: before 3.4.2-150200.11.60.1
libswresample2-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debugsource: before 3.4.2-150200.11.60.1
libpostproc-devel: before 3.4.2-150200.11.60.1
ffmpeg: before 3.4.2-150200.11.60.1
libavutil-devel: before 3.4.2-150200.11.60.1
libswresample-devel: before 3.4.2-150200.11.60.1
libswscale4-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-debuginfo: before 3.4.2-150200.11.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp5:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp3:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp4:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:desktop_applications_module:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_enterprise_storage:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:suse:libavcodec57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-private-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-debuginfo:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2025/suse-su-20251450-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
7) Buffer overflow
EUVDB-ID: #VU107143
Risk: High
CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2025-22921
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the affected system.
The vulnerability exists due to a boundary error within the jpeg2000_decode_packet() function in libavcodec/jpeg2000dec.c. A remote attacker can create a specially crafted input to the application,trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package ffmpeg to the latest version.
Vulnerable software versionsSUSE Linux Enterprise High Performance Computing LTSS 15: SP3 - SP5
SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4 - SP5
SUSE Linux Enterprise Server 15 SP5: LTSS
SUSE Linux Enterprise Server 15 SP3: LTSS
SUSE Linux Enterprise Server 15 SP4: LTSS
SUSE Linux Enterprise Workstation Extension 15: SP6
Desktop Applications Module: 15-SP6
SUSE Package Hub 15: 15-SP6
SUSE Linux Enterprise Real Time 15: SP6
openSUSE Leap: 15.6
SUSE Linux Enterprise Server for SAP Applications 15: SP3 - SP6
SUSE Linux Enterprise Server 15: SP3 - SP6
SUSE Linux Enterprise Desktop 15: SP6
SUSE Linux Enterprise High Performance Computing 15: SP3 - SP5
SUSE Enterprise Storage: 7.1
libavcodec57-32bit: before 3.4.2-150200.11.60.1
libswscale4-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswscale4-32bit: before 3.4.2-150200.11.60.1
libavutil55-32bit: before 3.4.2-150200.11.60.1
libavresample3-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavdevice57-32bit: before 3.4.2-150200.11.60.1
libpostproc54-32bit-debuginfo: before 3.4.2-150200.11.60.1
libswresample2-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavformat57-32bit: before 3.4.2-150200.11.60.1
libswresample2-32bit: before 3.4.2-150200.11.60.1
libavformat57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavutil55-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavfilter6-32bit: before 3.4.2-150200.11.60.1
libavcodec57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libavresample3-32bit: before 3.4.2-150200.11.60.1
libavdevice57-32bit-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-32bit: before 3.4.2-150200.11.60.1
libavformat57-debuginfo: before 3.4.2-150200.11.60.1
libavformat-devel: before 3.4.2-150200.11.60.1
libavfilter6: before 3.4.2-150200.11.60.1
ffmpeg-private-devel: before 3.4.2-150200.11.60.1
libavfilter6-debuginfo: before 3.4.2-150200.11.60.1
libavformat57: before 3.4.2-150200.11.60.1
libavdevice57: before 3.4.2-150200.11.60.1
libavcodec57: before 3.4.2-150200.11.60.1
libswresample2: before 3.4.2-150200.11.60.1
libswscale4: before 3.4.2-150200.11.60.1
libavdevice-devel: before 3.4.2-150200.11.60.1
libpostproc54: before 3.4.2-150200.11.60.1
libavutil55: before 3.4.2-150200.11.60.1
libavfilter-devel: before 3.4.2-150200.11.60.1
libavdevice57-debuginfo: before 3.4.2-150200.11.60.1
libavresample3: before 3.4.2-150200.11.60.1
libavutil55-debuginfo: before 3.4.2-150200.11.60.1
libavresample-devel: before 3.4.2-150200.11.60.1
libavcodec57-debuginfo: before 3.4.2-150200.11.60.1
libswscale-devel: before 3.4.2-150200.11.60.1
libavresample3-debuginfo: before 3.4.2-150200.11.60.1
libavcodec-devel: before 3.4.2-150200.11.60.1
libswresample2-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debuginfo: before 3.4.2-150200.11.60.1
ffmpeg-debugsource: before 3.4.2-150200.11.60.1
libpostproc-devel: before 3.4.2-150200.11.60.1
ffmpeg: before 3.4.2-150200.11.60.1
libavutil-devel: before 3.4.2-150200.11.60.1
libswresample-devel: before 3.4.2-150200.11.60.1
libswscale4-debuginfo: before 3.4.2-150200.11.60.1
libpostproc54-debuginfo: before 3.4.2-150200.11.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_ltss_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_espos_15:SP5:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp5:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp3:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15_sp4:LTSS:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:desktop_applications_module:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_package_hub_15:15-SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP6:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_enterprise_storage:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:suse:libavcodec57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-32bit-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-private-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter6-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavformat57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavfilter-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavdevice57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil55-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec57-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavresample3-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavcodec-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample2-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ffmpeg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libavutil-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswresample-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libswscale4-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:libpostproc54-debuginfo:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2025/suse-su-20251450-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
