Main Vulnerability Database SB2025112655

SB2025112655 - SUSE update for ffmpeg-4

Published: November 26, 2025

Security Bulletin ID SB2025112655

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Out-of-bounds write (CVE-ID: CVE-2025-59728)

The vulnerability allows a remote attacker to perform a denial of service attack.

The vulnerability exists due to a boundary error when handling MPEG-DASH manifests. A remote attacker can pass a specially crafted media file to the application, trigger a one-byte buffer overwrite and crash the application.

Remediation

Install update from vendor's website.

References

https://www.suse.com/support/update/announcement/2025/suse-su-20253810-1/

Vulnerable Software

SUSE Linux Enterprise Server 15 SP4: LTSS
SUSE Linux Enterprise High Performance Computing LTSS 15: SP4
SUSE Linux Enterprise High Performance Computing ESPOS 15: SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
openSUSE Leap: 15.4
libswscale5_9-64bit: before 4.4.6-150400.3.55.1
libpostproc55_9-64bit-debuginfo: before 4.4.6-150400.3.55.1
libavcodec58_134-64bit-debuginfo: before 4.4.6-150400.3.55.1
libswscale5_9-64bit-debuginfo: before 4.4.6-150400.3.55.1
libswresample3_9-64bit-debuginfo: before 4.4.6-150400.3.55.1
libpostproc55_9-64bit: before 4.4.6-150400.3.55.1
libavutil56_70-64bit-debuginfo: before 4.4.6-150400.3.55.1
libavresample4_0-64bit-debuginfo: before 4.4.6-150400.3.55.1
libavutil56_70-64bit: before 4.4.6-150400.3.55.1
libavdevice58_13-64bit: before 4.4.6-150400.3.55.1
libavresample4_0-64bit: before 4.4.6-150400.3.55.1
libavcodec58_134-64bit: before 4.4.6-150400.3.55.1
libavformat58_76-64bit: before 4.4.6-150400.3.55.1
libavdevice58_13-64bit-debuginfo: before 4.4.6-150400.3.55.1
libavfilter7_110-64bit-debuginfo: before 4.4.6-150400.3.55.1
libavformat58_76-64bit-debuginfo: before 4.4.6-150400.3.55.1
libswresample3_9-64bit: before 4.4.6-150400.3.55.1
libavfilter7_110-64bit: before 4.4.6-150400.3.55.1
libavcodec58_134-32bit: before 4.4.6-150400.3.55.1
libswresample3_9-32bit-debuginfo: before 4.4.6-150400.3.55.1
libavfilter7_110-32bit-debuginfo: before 4.4.6-150400.3.55.1
libavdevice58_13-32bit-debuginfo: before 4.4.6-150400.3.55.1
libavfilter7_110-32bit: before 4.4.6-150400.3.55.1
libswscale5_9-32bit-debuginfo: before 4.4.6-150400.3.55.1
libpostproc55_9-32bit-debuginfo: before 4.4.6-150400.3.55.1
libpostproc55_9-32bit: before 4.4.6-150400.3.55.1
libavresample4_0-32bit-debuginfo: before 4.4.6-150400.3.55.1
libavdevice58_13-32bit: before 4.4.6-150400.3.55.1
libavresample4_0-32bit: before 4.4.6-150400.3.55.1
libswscale5_9-32bit: before 4.4.6-150400.3.55.1
libavformat58_76-32bit: before 4.4.6-150400.3.55.1
libavutil56_70-32bit-debuginfo: before 4.4.6-150400.3.55.1
libavcodec58_134-32bit-debuginfo: before 4.4.6-150400.3.55.1
libswresample3_9-32bit: before 4.4.6-150400.3.55.1
libavutil56_70-32bit: before 4.4.6-150400.3.55.1
libavformat58_76-32bit-debuginfo: before 4.4.6-150400.3.55.1
libavformat58_76-debuginfo: before 4.4.6-150400.3.55.1
ffmpeg-4-libavcodec-devel: before 4.4.6-150400.3.55.1
ffmpeg-4-private-devel: before 4.4.6-150400.3.55.1
ffmpeg-4-libavfilter-devel: before 4.4.6-150400.3.55.1
libswscale5_9: before 4.4.6-150400.3.55.1
ffmpeg-4-libavresample-devel: before 4.4.6-150400.3.55.1
ffmpeg-4-debuginfo: before 4.4.6-150400.3.55.1
libavutil56_70-debuginfo: before 4.4.6-150400.3.55.1
libavresample4_0: before 4.4.6-150400.3.55.1
ffmpeg-4: before 4.4.6-150400.3.55.1
ffmpeg-4-libpostproc-devel: before 4.4.6-150400.3.55.1
libavfilter7_110: before 4.4.6-150400.3.55.1
libavdevice58_13-debuginfo: before 4.4.6-150400.3.55.1
libavfilter7_110-debuginfo: before 4.4.6-150400.3.55.1
libavcodec58_134: before 4.4.6-150400.3.55.1
libavresample4_0-debuginfo: before 4.4.6-150400.3.55.1
libswresample3_9: before 4.4.6-150400.3.55.1
libswresample3_9-debuginfo: before 4.4.6-150400.3.55.1
libswscale5_9-debuginfo: before 4.4.6-150400.3.55.1
libpostproc55_9: before 4.4.6-150400.3.55.1
libpostproc55_9-debuginfo: before 4.4.6-150400.3.55.1
libavdevice58_13: before 4.4.6-150400.3.55.1
ffmpeg-4-debugsource: before 4.4.6-150400.3.55.1
ffmpeg-4-libswscale-devel: before 4.4.6-150400.3.55.1
ffmpeg-4-libavformat-devel: before 4.4.6-150400.3.55.1
ffmpeg-4-libswresample-devel: before 4.4.6-150400.3.55.1
ffmpeg-4-libavutil-devel: before 4.4.6-150400.3.55.1
libavformat58_76: before 4.4.6-150400.3.55.1
libavcodec58_134-debuginfo: before 4.4.6-150400.3.55.1
libavutil56_70: before 4.4.6-150400.3.55.1
ffmpeg-4-libavdevice-devel: before 4.4.6-150400.3.55.1