Abacwaningi bezokuphepha abavela kwa-Google bahlonze ukuba sengozini (CVE-2022-2566) kulabhulali ye-libavformat, ingxenye yephakheji ye-multimedia ye-FFmpeg. Ukuba sengozini kuvumela ikhodi yomhlaseli ukuthi isetshenziswe uma ifayela le-mp4 elilungiswe ngokukhethekile licutshungulwa kusistimu yesisulu. Ukuba sengozini kuvela egatsheni le-FFmpeg 5.1 futhi kulungisiwe ekukhishweni kwe-FFmpeg 5.1.2.
Ukuba sengozini kubangelwa iphutha ekubaleni usayizi webhafa kumsebenzi we-build_open_gop_key_points(), okuholela ekuchichimeni okuphelele lapho kucutshungulwa amapharamitha athile futhi kwabiwa ibhulokhi yememori encane kunalokho okudingekayo. Ukukhombisa ukuthi kungenzeka yini ukuhlasela, kushicilelwe i-prototype yokuxhaphaza.
Source: opennet.ru