Security update for ffmpeg-4 SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2026:0229-1 Final 1 1 2026-01-22T12:22:22Z current 2026-01-22T12:22:22Z 2026-01-22T12:22:22Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for ffmpeg-4 This update for ffmpeg-4 fixes the following issues: - CVE-2023-6601: Fixed HLS Unsafe File Extension Bypass (bsc#1220545). - CVE-2025-63757: Fixed integer overflow in yuv2ya16_X_c_template() (bsc#1255392). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2026-229,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-229,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-229,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-229,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-229 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2026/suse-su-20260229-1/ Link for SUSE-SU-2026:0229-1 https://lists.suse.com/pipermail/sle-security-updates/2026-January/023856.html E-Mail link for SUSE-SU-2026:0229-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1220545 SUSE Bug 1220545 https://bugzilla.suse.com/1255392 SUSE Bug 1255392 https://www.suse.com/security/cve/CVE-2023-6601/ SUSE CVE CVE-2023-6601 page https://www.suse.com/security/cve/CVE-2025-63757/ SUSE CVE CVE-2025-63757 page SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise Server 15 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP4 ffmpeg-4-4.4.6-150400.3.60.1 ffmpeg-4-libavcodec-devel-4.4.6-150400.3.60.1 ffmpeg-4-libavdevice-devel-4.4.6-150400.3.60.1 ffmpeg-4-libavfilter-devel-4.4.6-150400.3.60.1 ffmpeg-4-libavformat-devel-4.4.6-150400.3.60.1 ffmpeg-4-libavresample-devel-4.4.6-150400.3.60.1 ffmpeg-4-libavutil-devel-4.4.6-150400.3.60.1 ffmpeg-4-libpostproc-devel-4.4.6-150400.3.60.1 ffmpeg-4-libswresample-devel-4.4.6-150400.3.60.1 ffmpeg-4-libswscale-devel-4.4.6-150400.3.60.1 ffmpeg-4-private-devel-4.4.6-150400.3.60.1 libavcodec58_134-4.4.6-150400.3.60.1 libavcodec58_134-32bit-4.4.6-150400.3.60.1 libavcodec58_134-64bit-4.4.6-150400.3.60.1 libavdevice58_13-4.4.6-150400.3.60.1 libavdevice58_13-32bit-4.4.6-150400.3.60.1 libavdevice58_13-64bit-4.4.6-150400.3.60.1 libavfilter7_110-4.4.6-150400.3.60.1 libavfilter7_110-32bit-4.4.6-150400.3.60.1 libavfilter7_110-64bit-4.4.6-150400.3.60.1 libavformat58_76-4.4.6-150400.3.60.1 libavformat58_76-32bit-4.4.6-150400.3.60.1 libavformat58_76-64bit-4.4.6-150400.3.60.1 libavresample4_0-4.4.6-150400.3.60.1 libavresample4_0-32bit-4.4.6-150400.3.60.1 libavresample4_0-64bit-4.4.6-150400.3.60.1 libavutil56_70-4.4.6-150400.3.60.1 libavutil56_70-32bit-4.4.6-150400.3.60.1 libavutil56_70-64bit-4.4.6-150400.3.60.1 libpostproc55_9-4.4.6-150400.3.60.1 libpostproc55_9-32bit-4.4.6-150400.3.60.1 libpostproc55_9-64bit-4.4.6-150400.3.60.1 libswresample3_9-4.4.6-150400.3.60.1 libswresample3_9-32bit-4.4.6-150400.3.60.1 libswresample3_9-64bit-4.4.6-150400.3.60.1 libswscale5_9-4.4.6-150400.3.60.1 libswscale5_9-32bit-4.4.6-150400.3.60.1 libswscale5_9-64bit-4.4.6-150400.3.60.1 libavcodec58_134-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS libavformat58_76-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS libavutil56_70-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS libpostproc55_9-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS libswresample3_9-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS libswscale5_9-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS libavcodec58_134-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS libavformat58_76-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS libavutil56_70-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS libpostproc55_9-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS libswresample3_9-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS libswscale5_9-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS libavcodec58_134-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS libavformat58_76-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS libavutil56_70-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS libpostproc55_9-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS libswresample3_9-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS libswscale5_9-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS libavcodec58_134-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 libavformat58_76-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 libavutil56_70-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 libpostproc55_9-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 libswresample3_9-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 libswscale5_9-4.4.6-150400.3.60.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 A flaw was found in FFmpeg's HLS demuxer. This vulnerability allows bypassing unsafe file extension checks and triggering arbitrary demuxers via base64-encoded data URIs appended with specific file extensions. CVE-2023-6601 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavcodec58_134-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavformat58_76-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavutil56_70-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libpostproc55_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libswresample3_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libswscale5_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libavcodec58_134-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libavformat58_76-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libavutil56_70-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libpostproc55_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libswresample3_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libswscale5_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libavcodec58_134-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libavformat58_76-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libavutil56_70-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libpostproc55_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libswresample3_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libswscale5_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libavcodec58_134-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libavformat58_76-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libavutil56_70-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libpostproc55_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libswresample3_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libswscale5_9-4.4.6-150400.3.60.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2026/suse-su-20260229-1/ https://www.suse.com/security/cve/CVE-2023-6601.html CVE-2023-6601 https://bugzilla.suse.com/1220545 SUSE Bug 1220545 Integer overflow vulnerability in the yuv2ya16_X_c_template function in libswscale/output.c in FFmpeg 8.0. CVE-2025-63757 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavcodec58_134-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavformat58_76-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libavutil56_70-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libpostproc55_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libswresample3_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libswscale5_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libavcodec58_134-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libavformat58_76-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libavutil56_70-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libpostproc55_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libswresample3_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libswscale5_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libavcodec58_134-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libavformat58_76-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libavutil56_70-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libpostproc55_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libswresample3_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libswscale5_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libavcodec58_134-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libavformat58_76-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libavutil56_70-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libpostproc55_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libswresample3_9-4.4.6-150400.3.60.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libswscale5_9-4.4.6-150400.3.60.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2026/suse-su-20260229-1/ https://www.suse.com/security/cve/CVE-2025-63757.html CVE-2025-63757 https://bugzilla.suse.com/1255392 SUSE Bug 1255392