A ffmpeg security update has been released for Debian GNU/Linux 9 Extended LTS to address an integer overflow.
ELA-927-1 ffmpeg security update
Package : ffmpeg
Version : 7:3.2.19-0+deb9u3 (stretch)
Related CVEs :
CVE-2021-28429
An issue has been found in ffmpeg, a tool/library for transcoding, streaming and playing of multimedia files.
Due to an integer overflow in av_timecode_make_string() in libavutil/timecode.c, local attackers might cause a Dos with crafted .mov files.
