ffmpeg-6-6.1.2-3.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2025:16072 Final 1 1 2025-04-18T00:00:00Z current 2025-04-18T00:00:00Z 2025-04-18T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z ffmpeg-6-6.1.2-3.1 on GA media These are all security issues fixed in the ffmpeg-6-6.1.2-3.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2025-16072 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2023-22656/ SUSE CVE CVE-2023-22656 page https://www.suse.com/security/cve/CVE-2023-45221/ SUSE CVE CVE-2023-45221 page https://www.suse.com/security/cve/CVE-2023-47169/ SUSE CVE CVE-2023-47169 page https://www.suse.com/security/cve/CVE-2023-47282/ SUSE CVE CVE-2023-47282 page https://www.suse.com/security/cve/CVE-2023-48368/ SUSE CVE CVE-2023-48368 page https://www.suse.com/security/cve/CVE-2023-51793/ SUSE CVE CVE-2023-51793 page https://www.suse.com/security/cve/CVE-2023-51798/ SUSE CVE CVE-2023-51798 page https://www.suse.com/security/cve/CVE-2024-12361/ SUSE CVE CVE-2024-12361 page https://www.suse.com/security/cve/CVE-2024-35365/ SUSE CVE CVE-2024-35365 page https://www.suse.com/security/cve/CVE-2024-35368/ SUSE CVE CVE-2024-35368 page https://www.suse.com/security/cve/CVE-2025-0518/ SUSE CVE CVE-2025-0518 page https://www.suse.com/security/cve/CVE-2025-22919/ SUSE CVE CVE-2025-22919 page https://www.suse.com/security/cve/CVE-2025-22921/ SUSE CVE CVE-2025-22921 page https://www.suse.com/security/cve/CVE-2025-25473/ SUSE CVE CVE-2025-25473 page openSUSE Tumbleweed ffmpeg-6-6.1.2-3.1 ffmpeg-6-libavcodec-devel-6.1.2-3.1 ffmpeg-6-libavdevice-devel-6.1.2-3.1 ffmpeg-6-libavfilter-devel-6.1.2-3.1 ffmpeg-6-libavformat-devel-6.1.2-3.1 ffmpeg-6-libavutil-devel-6.1.2-3.1 ffmpeg-6-libpostproc-devel-6.1.2-3.1 ffmpeg-6-libswresample-devel-6.1.2-3.1 ffmpeg-6-libswscale-devel-6.1.2-3.1 libavcodec60-6.1.2-3.1 libavdevice60-6.1.2-3.1 libavfilter9-6.1.2-3.1 libavformat60-6.1.2-3.1 libavutil58-6.1.2-3.1 libpostproc57-6.1.2-3.1 libswresample4-6.1.2-3.1 libswscale7-6.1.2-3.1 ffmpeg-6-6.1.2-3.1 as a component of openSUSE Tumbleweed ffmpeg-6-libavcodec-devel-6.1.2-3.1 as a component of openSUSE Tumbleweed ffmpeg-6-libavdevice-devel-6.1.2-3.1 as a component of openSUSE Tumbleweed ffmpeg-6-libavfilter-devel-6.1.2-3.1 as a component of openSUSE Tumbleweed ffmpeg-6-libavformat-devel-6.1.2-3.1 as a component of openSUSE Tumbleweed ffmpeg-6-libavutil-devel-6.1.2-3.1 as a component of openSUSE Tumbleweed ffmpeg-6-libpostproc-devel-6.1.2-3.1 as a component of openSUSE Tumbleweed ffmpeg-6-libswresample-devel-6.1.2-3.1 as a component of openSUSE Tumbleweed ffmpeg-6-libswscale-devel-6.1.2-3.1 as a component of openSUSE Tumbleweed libavcodec60-6.1.2-3.1 as a component of openSUSE Tumbleweed libavdevice60-6.1.2-3.1 as a component of openSUSE Tumbleweed libavfilter9-6.1.2-3.1 as a component of openSUSE Tumbleweed libavformat60-6.1.2-3.1 as a component of openSUSE Tumbleweed libavutil58-6.1.2-3.1 as a component of openSUSE Tumbleweed libpostproc57-6.1.2-3.1 as a component of openSUSE Tumbleweed libswresample4-6.1.2-3.1 as a component of openSUSE Tumbleweed libswscale7-6.1.2-3.1 as a component of openSUSE Tumbleweed Out-of-bounds read in Intel(R) Media SDK and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2023-22656 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-22656.html CVE-2023-22656 https://bugzilla.suse.com/1226899 SUSE Bug 1226899 Improper buffer restrictions in Intel(R) Media SDK all versions may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2023-45221 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-45221.html CVE-2023-45221 https://bugzilla.suse.com/1226898 SUSE Bug 1226898 Improper buffer restrictions in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access. CVE-2023-47169 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-47169.html CVE-2023-47169 https://bugzilla.suse.com/1226901 SUSE Bug 1226901 Out-of-bounds write in Intel(R) Media SDK all versions and some Intel(R) oneVPL software before version 23.3.5 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2023-47282 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-47282.html CVE-2023-47282 https://bugzilla.suse.com/1226900 SUSE Bug 1226900 Improper input validation in Intel(R) Media SDK software all versions may allow an authenticated user to potentially enable denial of service via local access. CVE-2023-48368 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-48368.html CVE-2023-48368 https://bugzilla.suse.com/1226897 SUSE Bug 1226897 Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavutil/imgutils.c:353:9 in image_copy_plane. CVE-2023-51793 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-51793.html CVE-2023-51793 https://bugzilla.suse.com/1223272 SUSE Bug 1223272 Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via a floating point exception (FPE) error at libavfilter/vf_minterpolate.c:1078:60 in interpolate. CVE-2023-51798 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2023-51798.html CVE-2023-51798 https://bugzilla.suse.com/1223304 SUSE Bug 1223304 unknown CVE-2024-12361 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-12361.html CVE-2024-12361 https://bugzilla.suse.com/1237358 SUSE Bug 1237358 FFmpeg version n6.1.1 has a double-free vulnerability in the fftools/ffmpeg_mux_init.c component of FFmpeg, specifically within the new_stream_audio function. CVE-2024-35365 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-35365.html CVE-2024-35365 https://bugzilla.suse.com/1235091 SUSE Bug 1235091 FFmpeg n7.0 is affected by a Double Free via the rkmpp_retrieve_frame function within libavcodec/rkmppdec.c. CVE-2024-35368 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2024-35368.html CVE-2024-35368 https://bugzilla.suse.com/1234028 SUSE Bug 1234028 Unchecked Return Value, Out-of-bounds Read vulnerability in FFmpeg allows Read Sensitive Constants Within an Executable. This vulnerability is associated with program files https://github.Com/FFmpeg/FFmpeg/blob/master/libavfilter/af_pan.C . This issue affects FFmpeg: 7.1. Issue was fixed: https://github.com/FFmpeg/FFmpeg/commit/b5b6391d64807578ab872dc58fb8aa621dcfc38a https://github.com/FFmpeg/FFmpeg/commit/b5b6391d64807578ab872dc58fb8aa621dcfc38a This issue was discovered by: Simcha Kosman CVE-2025-0518 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-0518.html CVE-2025-0518 https://bugzilla.suse.com/1236007 SUSE Bug 1236007 A reachable assertion in FFmpeg git-master commit N-113007-g8d24a28d06 allows attackers to cause a Denial of Service (DoS) via opening a crafted AAC file. CVE-2025-22919 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-22919.html CVE-2025-22919 https://bugzilla.suse.com/1237371 SUSE Bug 1237371 FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c. CVE-2025-22921 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-22921.html CVE-2025-22921 https://bugzilla.suse.com/1237382 SUSE Bug 1237382 FFmpeg git master before commit c08d30 was discovered to contain a NULL pointer dereference via the component libavformat/mov.c. CVE-2025-25473 openSUSE Tumbleweed:ffmpeg-6-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavcodec-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavdevice-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavfilter-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavformat-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libavutil-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libpostproc-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswresample-devel-6.1.2-3.1 openSUSE Tumbleweed:ffmpeg-6-libswscale-devel-6.1.2-3.1 openSUSE Tumbleweed:libavcodec60-6.1.2-3.1 openSUSE Tumbleweed:libavdevice60-6.1.2-3.1 openSUSE Tumbleweed:libavfilter9-6.1.2-3.1 openSUSE Tumbleweed:libavformat60-6.1.2-3.1 openSUSE Tumbleweed:libavutil58-6.1.2-3.1 openSUSE Tumbleweed:libpostproc57-6.1.2-3.1 openSUSE Tumbleweed:libswresample4-6.1.2-3.1 openSUSE Tumbleweed:libswscale7-6.1.2-3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-25473.html CVE-2025-25473 https://bugzilla.suse.com/1237351 SUSE Bug 1237351