CVE-2016-9561 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2016-9561 Interim 1 17 2023-12-09T01:11:51Z current 2021-05-30T13:47:56Z 2023-12-09T01:11:51Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2016-9561 The che_configure function in libavcodec/aacdec_template.c in FFmpeg before 3.2.1 allows remote attackers to cause a denial of service (allocation of huge memory, and being killed by the OS) via a crafted MOV file. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5KP24SRISSSDJLJ5BH6QGAZRN6R5R6JO/#5KP24SRISSSDJLJ5BH6QGAZRN6R5R6JO E-Mail link for openSUSE-SU-2017:2502-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Package Hub 12 SP1 SUSE Package Hub 12 SP2 ffmpeg-3.1.8-8.1 ffmpeg2-devel-2.8.11-12.1 libavcodec-devel-3.1.8-8.1 libavcodec56-2.8.11-12.1 libavcodec57-3.1.8-8.1 libavdevice-devel-3.1.8-8.1 libavdevice56-2.8.11-12.1 libavdevice57-3.1.8-8.1 libavfilter-devel-3.1.8-8.1 libavfilter5-2.8.11-12.1 libavfilter6-3.1.8-8.1 libavformat-devel-3.1.8-8.1 libavformat56-2.8.11-12.1 libavformat57-3.1.8-8.1 libavresample-devel-3.1.8-8.1 libavresample2-2.8.11-12.1 libavresample3-3.1.8-8.1 libavutil-devel-3.1.8-8.1 libavutil54-2.8.11-12.1 libavutil55-3.1.8-8.1 libpostproc-devel-3.1.8-8.1 libpostproc53-2.8.11-12.1 libpostproc54-3.1.8-8.1 libswresample-devel-3.1.8-8.1 libswresample1-2.8.11-12.1 libswresample2-3.1.8-8.1 libswscale-devel-3.1.8-8.1 libswscale3-2.8.11-12.1 libswscale4-3.1.8-8.1 ffmpeg2-devel-2.8.11-12.1 as a component of SUSE Package Hub 12 SP1 libavcodec56-2.8.11-12.1 as a component of SUSE Package Hub 12 SP1 libavdevice56-2.8.11-12.1 as a component of SUSE Package Hub 12 SP1 libavfilter5-2.8.11-12.1 as a component of SUSE Package Hub 12 SP1 libavformat56-2.8.11-12.1 as a component of SUSE Package Hub 12 SP1 libavresample2-2.8.11-12.1 as a component of SUSE Package Hub 12 SP1 libavutil54-2.8.11-12.1 as a component of SUSE Package Hub 12 SP1 libpostproc53-2.8.11-12.1 as a component of SUSE Package Hub 12 SP1 libswresample1-2.8.11-12.1 as a component of SUSE Package Hub 12 SP1 libswscale3-2.8.11-12.1 as a component of SUSE Package Hub 12 SP1 ffmpeg-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libavcodec-devel-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libavcodec57-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libavdevice-devel-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libavdevice57-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libavfilter-devel-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libavfilter6-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libavformat-devel-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libavformat57-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libavresample-devel-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libavresample3-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libavutil-devel-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libavutil55-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libpostproc-devel-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libpostproc54-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libswresample-devel-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libswresample2-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libswscale-devel-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 libswscale4-3.1.8-8.1 as a component of SUSE Package Hub 12 SP2 The che_configure function in libavcodec/aacdec_template.c in FFmpeg before 3.2.1 allows remote attackers to cause a denial of service (allocation of huge memory, and being killed by the OS) via a crafted MOV file. CVE-2016-9561 SUSE Package Hub 12 SP1:ffmpeg2-devel-2.8.11-12.1 SUSE Package Hub 12 SP1:libavcodec56-2.8.11-12.1 SUSE Package Hub 12 SP1:libavdevice56-2.8.11-12.1 SUSE Package Hub 12 SP1:libavfilter5-2.8.11-12.1 SUSE Package Hub 12 SP1:libavformat56-2.8.11-12.1 SUSE Package Hub 12 SP1:libavresample2-2.8.11-12.1 SUSE Package Hub 12 SP1:libavutil54-2.8.11-12.1 SUSE Package Hub 12 SP1:libpostproc53-2.8.11-12.1 SUSE Package Hub 12 SP1:libswresample1-2.8.11-12.1 SUSE Package Hub 12 SP1:libswscale3-2.8.11-12.1 SUSE Package Hub 12 SP2:ffmpeg-3.1.8-8.1 SUSE Package Hub 12 SP2:libavcodec-devel-3.1.8-8.1 SUSE Package Hub 12 SP2:libavcodec57-3.1.8-8.1 SUSE Package Hub 12 SP2:libavdevice-devel-3.1.8-8.1 SUSE Package Hub 12 SP2:libavdevice57-3.1.8-8.1 SUSE Package Hub 12 SP2:libavfilter-devel-3.1.8-8.1 SUSE Package Hub 12 SP2:libavfilter6-3.1.8-8.1 SUSE Package Hub 12 SP2:libavformat-devel-3.1.8-8.1 SUSE Package Hub 12 SP2:libavformat57-3.1.8-8.1 SUSE Package Hub 12 SP2:libavresample-devel-3.1.8-8.1 SUSE Package Hub 12 SP2:libavresample3-3.1.8-8.1 SUSE Package Hub 12 SP2:libavutil-devel-3.1.8-8.1 SUSE Package Hub 12 SP2:libavutil55-3.1.8-8.1 SUSE Package Hub 12 SP2:libpostproc-devel-3.1.8-8.1 SUSE Package Hub 12 SP2:libpostproc54-3.1.8-8.1 SUSE Package Hub 12 SP2:libswresample-devel-3.1.8-8.1 SUSE Package Hub 12 SP2:libswresample2-3.1.8-8.1 SUSE Package Hub 12 SP2:libswscale-devel-3.1.8-8.1 SUSE Package Hub 12 SP2:libswscale4-3.1.8-8.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5.5 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H