Search

Security ID : NAS-201808-01

Security Advisory for Vulnerabilities in FFmpeg

  • Release date : August 1, 2018

  • CVE identifier : CVE-2017-11399 | CVE-2017-11665 | CVE-2017-14223 | CVE-2017-14169 | CVE-2017-14225 | CVE-2017-17081 | CVE-2017-5024 | CVE-2017-9993

  • Affected products: QTS 4.3.4 build 20180528 and earlier

Severity

Important

Status

Resolved

Summary

Several vulnerabilities were recently found in FFmpeg. If exploited, these vulnerabilities could allow remote attackers to launch DDoS attacks or access sensitive information on the device.

We have already fixed these and other older FFmpeg issues in QTS 4.3.4 build 20180710 and later.

Recommendation

To fix these vulnerabilities, we recommend updating QTS to the latest version.

Installing the QTS Update

  1. Log on to QTS as administrator.
  2. Go to Control Panel > System > Firmware Update.
  3. Under Live Update, click Check for Update.

Tip: You can also download the update from the QNAP website. Go to Support > Download, and then perform a manual update.

 

Revision History: V1.0 (August 1, 2018) - Published

Elija especificación

      Mostrar más Mostrar menos

      Este portal en otros países / regiones:

      open menu
      back to top