Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 577458 (CVE-2016-2213, CVE-2016-2328, CVE-2016-2329, CVE-2016-2330) - <media-video/ffmpeg-2.8.6: Multiple vulnerabilities (CVE-2016-{2213,2328,2329,2330})
Summary: <media-video/ffmpeg-2.8.6: Multiple vulnerabilities (CVE-2016-{2213,2328,2329...
Status: RESOLVED FIXED
Alias: CVE-2016-2213, CVE-2016-2328, CVE-2016-2329, CVE-2016-2330
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL:
Whiteboard: A2 [glsa cve]
Keywords:
Depends on:
Blocks:
 
Reported: 2016-03-15 09:38 UTC by Kristian Fiskerstrand (RETIRED)
Modified: 2016-06-19 00:01 UTC (History)
2 users (show)

See Also:
Package list:
Runtime testing required: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Kristian Fiskerstrand (RETIRED) gentoo-dev 2016-03-15 09:38:49 UTC
Multiple security vulnerabilities fixed in 2.8.6 which is already in tree
Comment 1 GLSAMaker/CVETool Bot gentoo-dev 2016-03-15 09:39:11 UTC
CVE-2016-2330 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-2330):
  libavcodec/gif.c in FFmpeg before 2.8.6 does not properly calculate a buffer
  size, which allows remote attackers to cause a denial of service
  (out-of-bounds array access) or possibly have unspecified other impact via a
  crafted .tga file, related to the gif_image_write_image, gif_encode_init,
  and gif_encode_close functions.

CVE-2016-2329 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-2329):
  libavcodec/tiff.c in FFmpeg before 2.8.6 does not properly validate
  RowsPerStrip values and YCbCr chrominance subsampling factors, which allows
  remote attackers to cause a denial of service (out-of-bounds array access)
  or possibly have unspecified other impact via a crafted TIFF file, related
  to the tiff_decode_tag and decode_frame functions.

CVE-2016-2328 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-2328):
  libswscale/swscale_unscaled.c in FFmpeg before 2.8.6 does not validate
  certain height values, which allows remote attackers to cause a denial of
  service (out-of-bounds array read access) or possibly have unspecified other
  impact via a crafted .cine file, related to the bayer_to_rgb24_wrapper and
  bayer_to_yv12_wrapper functions.

CVE-2016-2213 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2016-2213):
  The jpeg2000_decode_tile function in libavcodec/jpeg2000dec.c in FFmpeg
  before 2.8.6 allows remote attackers to cause a denial of service
  (out-of-bounds array read access) via crafted JPEG 2000 data.
Comment 2 Alexis Ballier gentoo-dev 2016-03-15 12:39:31 UTC
we already have 2.8.5 stable, so let's go for 2.8.6 to fix this
Comment 3 Agostino Sarubbo gentoo-dev 2016-03-15 13:58:42 UTC
amd64 stable
Comment 4 Agostino Sarubbo gentoo-dev 2016-03-15 14:04:20 UTC
x86 stable
Comment 5 Agostino Sarubbo gentoo-dev 2016-03-16 14:11:48 UTC
ppc stable
Comment 6 Agostino Sarubbo gentoo-dev 2016-03-17 11:35:41 UTC
ppc64 stable
Comment 7 Tobias Klausmann gentoo-dev 2016-03-17 19:05:26 UTC
Stable on alpha.
Comment 8 Markus Meier gentoo-dev 2016-03-18 06:14:24 UTC
arm stable
Comment 9 Jeroen Roovers (RETIRED) gentoo-dev 2016-03-19 10:07:08 UTC
Stable for HPPA.
Comment 10 Agostino Sarubbo gentoo-dev 2016-03-19 11:41:00 UTC
sparc stable
Comment 11 Agostino Sarubbo gentoo-dev 2016-03-20 12:03:58 UTC
ia64 stable.

Maintainer(s), please cleanup.
Security, please add it to the existing request, or file a new one.
Comment 12 Aaron Bauman Gentoo Infrastructure gentoo-dev Security 2016-03-20 12:21:59 UTC
Added to existing GLSA.
Comment 13 GLSAMaker/CVETool Bot gentoo-dev 2016-06-19 00:01:27 UTC
This issue was resolved and addressed in
 GLSA 201606-09 at https://security.gentoo.org/glsa/201606-09
by GLSA coordinator Kristian Fiskerstrand (K_F).