SUSE-SU-2026:0229-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2026:0229-1

UNKNOWN

Security update for ffmpeg-4

Published Jan 22, 2026

Modified 1 months ago

Fix available

Details

This update for ffmpeg-4 fixes the following issues:

CVE-2023-6601: Fixed HLS Unsafe File Extension Bypass (bsc#1220545).
CVE-2025-63757: Fixed integer overflow in yuv2ya16_X_c_template() (bsc#1255392).

Affected Packages

ffmpeg-4

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOSSUSE Linux Enterprise High Performance Computing 15 SP4-LTSSSUSE Linux Enterprise Server 15 SP4-LTSSSUSE Linux Enterprise Server for SAP Applications 15 SP4

Fixed in:

4.4.6-150400.3.60.1

libavcodec58_134

Fixed in:

4.4.6-150400.3.60.1

libavformat58_76

Fixed in:

4.4.6-150400.3.60.1

libavutil56_70

Fixed in:

4.4.6-150400.3.60.1

libpostproc55_9

Fixed in:

4.4.6-150400.3.60.1

libswresample3_9

Fixed in:

4.4.6-150400.3.60.1

libswscale5_9

Fixed in:

4.4.6-150400.3.60.1

References

REPORT

https://bugzilla.suse.com/1220545

REPORT

https://bugzilla.suse.com/1255392

WEB

https://www.suse.com/security/cve/CVE-2023-6601

WEB

https://www.suse.com/security/cve/CVE-2025-63757

ADVISORY

https://www.suse.com/support/update/announcement/2026/suse-su-20260229-1/

Upstream

CVE-2023-6601 CVE-2025-63757

Ecosystems

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise Server 15 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP4

Timeline

PublishedJan 22, 2026

ModifiedJan 22, 2026