Summary: | media-video/ffmpeg <0.4.9_p20081014 libavformat/utils.c Multiple buffer overflows (CVE-2008-{4866,4867,4868,4869}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Stefan Behte (RETIRED) <craig> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | media-video |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4866 | ||
Whiteboard: | B2 [glsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 245285 | ||
Bug Blocks: |
Description
Stefan Behte (RETIRED)
2008-11-02 19:43:31 UTC
Name: CVE-2008-4867 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4867 Published: 2008-10-31 Severity: Description: Buffer overflow in libavcodec/dca.c in FFmpeg 0.4.9 before r14917, as used by MPlayer, allows context-dependent attackers to have an unknown impact via vectors related to an incorrect DCA_MAX_FRAME_SIZE value. Name: CVE-2008-4868 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4868 Published: 2008-10-31 Severity: Description: Unspecified vulnerability in the avcodec_close function in libavcodec/utils.c in FFmpeg 0.4.9 before r14787, as used by MPlayer, has unknown impact and attack vectors, related to a free "on random pointers." Name: CVE-2008-4869 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4869 Published: 2008-10-31 Severity: Description: FFmpeg 0.4.9, as used by MPlayer, allows context-dependent attackers to cause a denial of service (memory consumption) via unknown vectors, aka a "Tcp/udp memory leak." CVE-2008-4867 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4867): Buffer overflow in libavcodec/dca.c in FFmpeg 0.4.9 before r14917, as used by MPlayer, allows context-dependent attackers to have an unknown impact via vectors related to an incorrect DCA_MAX_FRAME_SIZE value. CVE-2008-4868 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4868): Unspecified vulnerability in the avcodec_close function in libavcodec/utils.c in FFmpeg 0.4.9 before r14787, as used by MPlayer, has unknown impact and attack vectors, related to a free "on random pointers." CVE-2008-4869 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4869): FFmpeg 0.4.9, as used by MPlayer, allows context-dependent attackers to cause a denial of service (memory consumption) via unknown vectors, aka a "Tcp/udp memory leak." Sorry for the double-posting of the CVEs. Bug 245285 will close this, should Status Whiteboard be changed and arch teams also be CC'd here? (In reply to comment #4) > Bug 245285 will close this, should Status Whiteboard be changed and arch teams > also be CC'd here? > alpha (blackbird) and x86 (me) stable Sparc stable. ppc stable arm/ia64 stable Security: All archteams are done. glsa request filed GLSA 200903-33 |