MGASA-2019-0223

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2019-0223.html
Import Source
https://advisories.mageia.org/MGASA-2019-0223.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2019-0223
Related
Published
2019-08-18T12:39:41Z
Modified
2022-02-17T18:21:47Z
Summary
Updated mythtv packages fix security issues
Details

This update provides and update to mythtv 30, and updates the bundled ffmpeg to 3.2. It also fixes at least the following issue:

The flvwritepacket function in libavformat/flvenc.c in FFmpeg through 4.0.2 does not check for an empty audio packet, leading to an assertion failure (CVE-2018-15822).

It also fixes mythbackend missing needed environment variables (mga#24104).

For other changes/fixes in this update, see the referenced Release Notes.

References
Credits

Affected packages

Mageia:6 / mythtv

Package

Name
mythtv
Purl
pkg:rpm/mageia/mythtv?distro=mageia-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
30.0-20190121.1.mga6.tainted

Ecosystem specific 

{
    "section": "tainted"
}

Mageia:6 / mythtv

Package

Name
mythtv
Purl
pkg:rpm/mageia/mythtv?distro=mageia-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
30.0-20190121.1.mga6

Ecosystem specific 

{
    "section": "core"
}

Mageia:6 / mythtv-mythweb

Package

Name
mythtv-mythweb
Purl
pkg:rpm/mageia/mythtv-mythweb?distro=mageia-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
30.0-1.mga6

Ecosystem specific 

{
    "section": "core"
}

Mageia:6 / hdhomerun

Package

Name
hdhomerun
Purl
pkg:rpm/mageia/hdhomerun?distro=mageia-6

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
20180817-1.mga6

Ecosystem specific 

{
    "section": "core"
}