This bug was fixed in the package ffmpeg - 4:0.6-2ubuntu6.1
---------------
ffmpeg (4:0.6-2ubuntu6.1) maverick-security; urgency=low
* SECURITY UPDATE: denial of service via crafted .ogg file
- debian/patches/fix-CVE-2010-4704.patch: validate codebook in
libavcodec/vorbis_dec.c.
- CVE-2010-4704
* SECURITY UPDATE: denial of service and possible code execution via
crafted WebM file
- debian/patches/fix-CVE-2011-0480.patch: check rangebits in
libavcodec/vorbis_dec.c.
- CVE-2011-0480
* SECURITY UPDATE: denial of service and possible code execution via
crafted VC1 file (LP: #690169)
- debian/patches/fix-CVE-2011-0723.patch: fix invalid reads in
libavcodec/vc1dec.c.
- CVE-2011-0723
-- Marc Deslauriers <[email protected]> Thu, 31 Mar 2011 10:38:02
-0400
** Changed in: ffmpeg (Ubuntu)
Status: Confirmed => Fix Released
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2010-4704
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2011-0480
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/690169
Title:
Memory corruption in wmv parsing
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
