CVE-2008-4866 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4866): Multiple buffer overflows in libavformat/utils.c in FFmpeg 0.4.9 before r14715, as used by MPlayer, allow context-dependent attackers to have an unknown impact via vectors related to execution of DTS generation code with a delay greater than MAX_REORDER_DELAY.
Name: CVE-2008-4867 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4867 Published: 2008-10-31 Severity: Description: Buffer overflow in libavcodec/dca.c in FFmpeg 0.4.9 before r14917, as used by MPlayer, allows context-dependent attackers to have an unknown impact via vectors related to an incorrect DCA_MAX_FRAME_SIZE value. Name: CVE-2008-4868 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4868 Published: 2008-10-31 Severity: Description: Unspecified vulnerability in the avcodec_close function in libavcodec/utils.c in FFmpeg 0.4.9 before r14787, as used by MPlayer, has unknown impact and attack vectors, related to a free "on random pointers." Name: CVE-2008-4869 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4869 Published: 2008-10-31 Severity: Description: FFmpeg 0.4.9, as used by MPlayer, allows context-dependent attackers to cause a denial of service (memory consumption) via unknown vectors, aka a "Tcp/udp memory leak."
CVE-2008-4867 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4867): Buffer overflow in libavcodec/dca.c in FFmpeg 0.4.9 before r14917, as used by MPlayer, allows context-dependent attackers to have an unknown impact via vectors related to an incorrect DCA_MAX_FRAME_SIZE value. CVE-2008-4868 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4868): Unspecified vulnerability in the avcodec_close function in libavcodec/utils.c in FFmpeg 0.4.9 before r14787, as used by MPlayer, has unknown impact and attack vectors, related to a free "on random pointers." CVE-2008-4869 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-4869): FFmpeg 0.4.9, as used by MPlayer, allows context-dependent attackers to cause a denial of service (memory consumption) via unknown vectors, aka a "Tcp/udp memory leak."
Sorry for the double-posting of the CVEs.
Bug 245285 will close this, should Status Whiteboard be changed and arch teams also be CC'd here?
(In reply to comment #4) > Bug 245285 will close this, should Status Whiteboard be changed and arch teams > also be CC'd here? > alpha (blackbird) and x86 (me) stable
Sparc stable.
ppc stable
arm/ia64 stable
Security: All archteams are done.
glsa request filed
GLSA 200903-33