| Package | ffmpeg |
|---|---|
| Version | 7:3.2.19-0+deb9u6 (stretch) |
| Related CVEs | CVE-2024-35366 CVE-2024-35367 CVE-2024-36616 CVE-2024-36617 CVE-2024-36618 |
Several issues have been found in ffmpeg, a package that contains tools for transcoding, streaming and playing of multimedia files Those issues are related to possible integer overflows, double-free on errors, out-of-bounds access and an incomplete check of negative durations.
For Debian 9 stretch, these problems have been fixed in version 7:3.2.19-0+deb9u6.
We recommend that you upgrade your ffmpeg packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.