These are all security issues fixed in the libquicktime-1.2.4+git20180804.fff99cd-2.10 package on the GA media of openSUSE Tumbleweed.