This update for ffmpeg fixes the following issues:
* CVE-2025-22921: Clear array length when freeing it. (bsc#1237382)
* CVE-2025-0518: Fix memory data leak when use sscanf(). (bsc#1236007)
* CVE-2025-22919: Check for valid sample rate, to fix the invalid sample rate
>= 0. (bsc#1237371)
* CVE-2024-12361: Add check for av_packet_new_side_data() to avoid null
pointer dereference if allocation fails. (bsc#1237358)
* CVE-2024-36613: Adjust order of operations around block align. (bsc#1235092)
* CVE-2024-35365: Fix double-free on error. (bsc#1235091)
* CVE-2024-35368: Fix double-free on the AVFrame is unreferenced.
(bsc#1234028)
* CVE-2023-51793: Fix out of array access. (bsc#1223272).
* CVE-2023-51793: Fixed a heap buffer overflow in the image_copy_plane
function in libavutil/imgutils.c (bsc#1223272).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2025-1450=1
* Desktop Applications Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2025-1450=1
* SUSE Package Hub 15 15-SP6
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-1450=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-1450=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-1450=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-1450=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5
zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-1450=1
* SUSE Linux...
Read the Full Advisory* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* libpostproc54-debuginfo-3.4.2-150200.11.60.1
* libswscale4-debuginfo-3.4.2-150200.11.60.1
* libswresample-devel-3.4.2-150200.11.60.1
* libavutil-devel-3.4.2-150200.11.60.1
* ffmpeg-3.4.2-150200.11.60.1
* libpostproc-devel-3.4.2-150200.11.60.1
* ffmpeg-debugsource-3.4.2-150200.11.60.1
* ffmpeg-debuginfo-3.4.2-150200.11.60.1
* libswresample2-debuginfo-3.4.2-150200.11.60.1
* libavcodec-devel-3.4.2-150200.11.60.1
* libavresample3-debuginfo-3.4.2-150200.11.60.1
* libswscale-devel-3.4.2-150200.11.60.1
* libavcodec57-debuginfo-3.4.2-150200.11.60.1
* libavresample-devel-3.4.2-150200.11.60.1
* libavutil55-debuginfo-3.4.2-150200.11.60.1
* libavresample3-3.4.2-150200.11.60.1
* libavdevice57-debuginfo-3.4.2-150200.11.60.1
* libavfilter-devel-3.4.2-150200.11.60.1
* libavutil55-3.4.2-150200.11.60.1
* libpostproc54-3.4.2-150200.11.60.1
* libavdevice-devel-3.4.2-150200.11.60.1
* libswscale4-3.4.2-150200.11.60.1
* libswresample2-3.4.2-150200.11.60.1
*...
Read the Full Advisory* bsc#1223272
* bsc#1234028
* bsc#1235091
* bsc#1235092
* bsc#1236007
* bsc#1237358
* bsc#1237371
* bsc#1237382
## References:
* https://www.suse.com/security/cve/CVE-2023-51793.html
* https://www.suse.com/security/cve/CVE-2024-12361.html
* https://www.suse.com/security/cve/CVE-2024-35365.html
* https://www.suse.com/security/cve/CVE-2024-35368.html
* https://www.suse.com/security/cve/CVE-2024-36613.html
* https://www.suse.com/security/cve/CVE-2025-0518.html
* https://www.suse.com/security/cve/CVE-2025-22919.html
* https://www.suse.com/security/cve/CVE-2025-22921.html
* https://bugzilla.suse.com/show_bug.cgi?id=1223272
* https://bugzilla.suse.com/show_bug.cgi?id=1234028
* https://bugzilla.suse.com/show_bug.cgi?id=1235091
* https://bugzilla.suse.com/show_bug.cgi?id=1235092
* https://bugzilla.suse.com/show_bug.cgi?id=1236007
* https://bugzilla.suse.com/show_bug.cgi?id=1237358
* https://bugzilla.suse.com/show_bug.cgi?id=1237371
* https://bugzilla.suse.com/show_bug.cgi?id=1237382
Get the latest Linux and open source security news straight to your inbox.