MGASA-2019-0223

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2019-0223.html

Import Source

https://advisories.mageia.org/MGASA-2019-0223.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2019-0223

Related

CVE-2018-15822

Published

2019-08-18T12:39:41Z

Modified

2022-02-17T18:21:47Z

Summary

Updated mythtv packages fix security issues

Details

This update provides and update to mythtv 30, and updates the bundled ffmpeg to 3.2. It also fixes at least the following issue:

The flvwritepacket function in libavformat/flvenc.c in FFmpeg through 4.0.2 does not check for an empty audio packet, leading to an assertion failure (CVE-2018-15822).

It also fixes mythbackend missing needed environment variables (mga#24104).

For other changes/fixes in this update, see the referenced Release Notes.

References

https://advisories.mageia.org/MGASA-2019-0223.html
https://bugs.mageia.org/show_bug.cgi?id=24099
https://bugs.mageia.org/show_bug.cgi?id=24104
https://www.mythtv.org/wiki/Release_Notes_-_29
https://www.mythtv.org/wiki/Release_Notes_-_30

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

MGASA-2019-0223

Affected packages