Skip to content

[Deepin Integration]~[v25-Release] fix(ffmpeg): complete CVE-2026-8461 backport in MagicYUV decoder by wyu71@deepin-community/ffmpeg by deepin-community-ci-bot[bot] #13518

Description

@deepin-bot

Package information | 软件包信息

包名 版本
ffmpeg 7:6.1.5-0deepin3

Package repository address | 软件包仓库地址

deb [trusted=yes] https://ci.deepin.com/repo/obs/deepin:/CI:/TestingIntegration:/test-integration-pr-4203/testing/ ./

Changelog | 更新信息

ffmpeg (7:6.1.5-0deepin3) unstable; urgency=medium

  • CVE-2026-8461: Fix heap out-of-bounds write in MagicYUV decoder
    Complete upstream backport (PR #23159):
    • reject slice_height misaligned with chroma vshift
    • apply slice-height sanity check to progressive mode
    • fix 1-line MEDIAN slice OOB read in magy_decode_slice10

Metadata

Metadata

Assignees

Type

No type
No fields configured for issues without a type.

Projects

Status
已集成

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions