FFmpeg LibAVCodec Heap Buffer Overflow Vulnerability

Bugtraq ID: 15743
Class: Boundary Condition Error
CVE: CVE-2005-4048
Remote: Yes
Local: No
Published: Dec 06 2005 12:00AM
Updated: Jan 04 2007 06:27PM
Credit: Simon Kilvington <s.kilvington@eris.qinetiq.com> disclosed this issue to the vendor.
Vulnerable: VLC VLC 0.8.5
VLC VLC 0.8.4
VLC VLC 0.8.1
Ubuntu Ubuntu Linux 5.10 powerpc
Ubuntu Ubuntu Linux 5.10 i386
Ubuntu Ubuntu Linux 5.10 amd64
Ubuntu Ubuntu Linux 5.0 4 powerpc
Ubuntu Ubuntu Linux 5.0 4 i386
Ubuntu Ubuntu Linux 5.0 4 amd64
Ubuntu Ubuntu Linux 4.1 ppc
Ubuntu Ubuntu Linux 4.1 ia64
Ubuntu Ubuntu Linux 4.1 ia32
Slackware Linux 10.2
Slackware Linux -current
Mandriva Linux Mandrake 2006.0 x86_64
Mandriva Linux Mandrake 2006.0
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
Gentoo Linux
FFmpeg FFmpeg 0.8.7
FFmpeg FFmpeg 0.4.9 -pre1
FFmpeg FFmpeg 0.4.8
FFmpeg FFmpeg 0.4.7
FFmpeg FFmpeg 0.4.6
FFmpeg FFmpeg CVS
+ Ubuntu Ubuntu Linux 5.0 4 powerpc
 + Ubuntu Ubuntu Linux 5.0 4 i386
 + Ubuntu Ubuntu Linux 5.0 4 amd64
 FFmpeg FFmpeg 2005-03-13
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 3.1
Not Vulnerable: FFmpeg FFmpeg 0.8.7 -r1


 

Privacy Statement
Copyright 2010, SecurityFocus