[ubuntu/maverick-security] ffmpeg-extra 4:0.6-2ubuntu3.2 (Accepted)

[Marc Deslauriers]

ffmpeg-extra (4:0.6-2ubuntu3.2) maverick-security; urgency=low

  * SECURITY UPDATE: denial of service and possible code execution via
    malformed OGG file
    - debian/patches/CVE-2011-1196.patch: revalidate index when necessary
      in libavformat/oggdec.c.
    - CVE-2011-1196
  * SECURITY UPDATE: denial of service and possible code execution via
    malformed AMV file
    - debian/patches/CVE-2011-1931.patch: don't change flags in
      libavcodec/sp5xdec.c.
    - CVE-2011-1931
  * SECURITY UPDATE: denial of service via malformed APE file
    - debian/patches/CVE-2011-2161.patch: make sure there are frames in
      libavformat/ape.c.
    - CVE-2011-2161
  * SECURITY UPDATE: arbitrary code execution via malformed CAVS file
    - debian/patches/CVE-2011-3362.patch: validate values in
      libavcodec/cavsdec.c.
    - CVE-2011-3362

Date: Mon, 19 Sep 2011 09:29:46 -0400
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
https://launchpad.net/ubuntu/maverick/+source/ffmpeg-extra/4:0.6-2ubuntu3.2

Format: 1.8
Date: Mon, 19 Sep 2011 09:29:46 -0400
Source: ffmpeg-extra
Binary: libavutil-extra-50 libavutil-unstripped-50 libavcodec-extra-52 
libavcodec-unstripped-52 libavdevice-extra-52 libavdevice-unstripped-52 
libavfilter-extra-1 libpostproc-extra-51 libpostproc-unstripped-51 
libavformat-extra-52 libavformat-unstripped-52 libswscale-extra-0 
libswscale-unstripped-0
Architecture: source
Version: 4:0.6-2ubuntu3.2
Distribution: maverick-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-disc...@lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauri...@ubuntu.com>
Description: 
 libavcodec-extra-52 - ffmpeg codec library
 libavcodec-unstripped-52 - ffmpeg utility library - transitional package
 libavdevice-extra-52 - ffmpeg device handling library
 libavdevice-unstripped-52 - ffmpeg utility library - transitional package
 libavfilter-extra-1 - ffmpeg video filtering library
 libavformat-extra-52 - ffmpeg file format library
 libavformat-unstripped-52 - ffmpeg utility library - transitional package
 libavutil-extra-50 - ffmpeg utility library
 libavutil-unstripped-50 - ffmpeg utility library - transitional package
 libpostproc-extra-51 - ffmpeg video postprocessing library
 libpostproc-unstripped-51 - ffmpeg utility library - transitional package
 libswscale-extra-0 - ffmpeg video scaling library
 libswscale-unstripped-0 - ffmpeg utility library - transitional package
Changes: 
 ffmpeg-extra (4:0.6-2ubuntu3.2) maverick-security; urgency=low
 .
   * SECURITY UPDATE: denial of service and possible code execution via
     malformed OGG file
     - debian/patches/CVE-2011-1196.patch: revalidate index when necessary
       in libavformat/oggdec.c.
     - CVE-2011-1196
   * SECURITY UPDATE: denial of service and possible code execution via
     malformed AMV file
     - debian/patches/CVE-2011-1931.patch: don't change flags in
       libavcodec/sp5xdec.c.
     - CVE-2011-1931
   * SECURITY UPDATE: denial of service via malformed APE file
     - debian/patches/CVE-2011-2161.patch: make sure there are frames in
       libavformat/ape.c.
     - CVE-2011-2161
   * SECURITY UPDATE: arbitrary code execution via malformed CAVS file
     - debian/patches/CVE-2011-3362.patch: validate values in
       libavcodec/cavsdec.c.
     - CVE-2011-3362
Checksums-Sha1: 
 5007d4b4c84833fc5c4f0c056f9254baad338d5a 3259 ffmpeg-extra_0.6-2ubuntu3.2.dsc
 3fcf3f1590e5098b19ebc6b8de88b5686ba0a577 100698 
ffmpeg-extra_0.6-2ubuntu3.2.diff.gz
Checksums-Sha256: 
 81bc5ec6d2bc222d09bef38c57d8fb24ff7869f805e25e69aa29e635ddf902e6 3259 
ffmpeg-extra_0.6-2ubuntu3.2.dsc
 c0c65e59933b5ea1960a58e63d841e77a74ff736868ef6ada0ae94a90115f31f 100698 
ffmpeg-extra_0.6-2ubuntu3.2.diff.gz
Files: 
 73683419a7c54c3e03e20721f4c87ddf 3259 libs optional 
ffmpeg-extra_0.6-2ubuntu3.2.dsc
 c3d1d62ddef173393a8c1ec45ac2f651 100698 libs optional 
ffmpeg-extra_0.6-2ubuntu3.2.diff.gz
Original-Maintainer: Debian multimedia packages maintainers 
<pkg-multimedia-maintain...@lists.alioth.debian.org>

-- 
Maverick-changes mailing list
Maverick-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/maverick-changes