Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.5 has unknown impact and attack vectors, related to reallocation code and the luma height and width.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Libav | Libav | 0.8 (including) | 0.8 (including) |
| Libav | Libav | 0.8-beta2 (including) | 0.8-beta2 (including) |
| Libav | Libav | 0.8.1 (including) | 0.8.1 (including) |
| Libav | Libav | 0.8.2 (including) | 0.8.2 (including) |
| Libav | Libav | 0.8.3 (including) | 0.8.3 (including) |
| Libav | Libav | 0.8.4 (including) | 0.8.4 (including) |
| Ffmpeg | Ubuntu | hardy | * |
| Ffmpeg | Ubuntu | upstream | * |
| Libav | Ubuntu | devel | * |
| Libav | Ubuntu | natty | * |
| Libav | Ubuntu | precise | * |
| Libav | Ubuntu | quantal | * |
| Libav | Ubuntu | upstream | * |
| Libav-extra | Ubuntu | devel | * |
| Libav-extra | Ubuntu | natty | * |
| Libav-extra | Ubuntu | precise | * |
| Libav-extra | Ubuntu | quantal | * |
| Libav-extra | Ubuntu | upstream | * |
References
- http://ffmpeg.org/security.html
- http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=4a80ebe491609e04110a1dd540a0ca79d3be3d04
- http://libav.org/releases/libav-0.8.5.changelog
- http://secunia.com/advisories/50468
- http://www.openwall.com/lists/oss-security/2012/08/31/3
- http://www.openwall.com/lists/oss-security/2012/09/02/4
- http://www.securityfocus.com/bid/55355
- http://www.ubuntu.com/usn/USN-1705-1
- http://ffmpeg.org/security.html
- http://git.videolan.org/?p=ffmpeg.git%3Ba=commitdiff%3Bh=4a80ebe491609e04110a1dd540a0ca79d3be3d04
- http://libav.org/releases/libav-0.8.5.changelog
- http://secunia.com/advisories/50468
- http://www.openwall.com/lists/oss-security/2012/08/31/3
- http://www.openwall.com/lists/oss-security/2012/09/02/4
- http://www.securityfocus.com/bid/55355
- http://www.ubuntu.com/usn/USN-1705-1