[ubuntu/hardy-security] ffmpeg (delayed), ffmpeg 3:0.cvs20070307-5ubuntu7.6 (Accepted)
Ubuntu Installer
archive at ubuntu.com
Mon Apr 4 17:17:51 UTC 2011
ffmpeg (3:0.cvs20070307-5ubuntu7.6) hardy-security; urgency=low
* SECURITY UPDATE: arbitrary code execution via crafted flic file
- debian/patches/CVE-2010-3429.patch: add checks to
libavcodec/flicvideo.c.
- CVE-2010-3429
* SECURITY UPDATE: arbitrary code execution via crafted wmv file
(LP: #690169)
- debian/patches/CVE-2010-3908.patch: properly calculate size in
libavcodec/utils.c.
- CVE-2010-3908
* SECURITY UPDATE: denial of service via crafted .ogg file
- debian/patches/CVE-2010-4704.patch: validate codebook in
libavcodec/vorbis.c.
- CVE-2010-4704
* SECURITY UPDATE: denial of service and possible code execution via
crafted WebM file
- debian/patches/CVE-2011-0480.patch: check rangebits in
libavcodec/vorbis.c.
- CVE-2011-0480
* SECURITY UPDATE: denial of service and possible code execution via
crafted VC1 file (LP: #690169)
- debian/patches/CVE-2011-0723.patch: fix invalid reads in
libavcodec/vc1dec.c.
- CVE-2011-0723
Date: Thu, 31 Mar 2011 13:54:41 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/hardy/+source/ffmpeg/3:0.cvs20070307-5ubuntu7.6
-------------- next part --------------
Format: 1.7
Date: Thu, 31 Mar 2011 13:54:41 -0400
Source: ffmpeg
Binary: ffmpeg libavutil1d libavcodec1d libpostproc1d libavformat1d libswscale1d libavutil-dev libavcodec-dev libpostproc-dev libavformat-dev libswscale-dev
Architecture: source
Version: 3:0.cvs20070307-5ubuntu7.6
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Description:
ffmpeg - multimedia player, server and encoder
libavcodec-dev - development files for libavcodec
libavcodec1d - ffmpeg codec library
libavformat-dev - development files for libavformat
libavformat1d - ffmpeg file format library
libavutil-dev - development files for libavutil
libavutil1d - ffmpeg utility library
libpostproc-dev - development files for libpostproc
libpostproc1d - ffmpeg video postprocessing library
libswscale-dev - development files for libswscale
libswscale1d - ffmpeg video scaling library
Launchpad-Bugs-Fixed: 690169 690169
Changes:
ffmpeg (3:0.cvs20070307-5ubuntu7.6) hardy-security; urgency=low
.
* SECURITY UPDATE: arbitrary code execution via crafted flic file
- debian/patches/CVE-2010-3429.patch: add checks to
libavcodec/flicvideo.c.
- CVE-2010-3429
* SECURITY UPDATE: arbitrary code execution via crafted wmv file
(LP: #690169)
- debian/patches/CVE-2010-3908.patch: properly calculate size in
libavcodec/utils.c.
- CVE-2010-3908
* SECURITY UPDATE: denial of service via crafted .ogg file
- debian/patches/CVE-2010-4704.patch: validate codebook in
libavcodec/vorbis.c.
- CVE-2010-4704
* SECURITY UPDATE: denial of service and possible code execution via
crafted WebM file
- debian/patches/CVE-2011-0480.patch: check rangebits in
libavcodec/vorbis.c.
- CVE-2011-0480
* SECURITY UPDATE: denial of service and possible code execution via
crafted VC1 file (LP: #690169)
- debian/patches/CVE-2011-0723.patch: fix invalid reads in
libavcodec/vc1dec.c.
- CVE-2011-0723
Files:
c9e66cf5c5607f3e32e430f21a751f83 1940 libs optional ffmpeg_0.cvs20070307-5ubuntu7.6.dsc
69f55e152828946367e75b3084e687ee 49154 libs optional ffmpeg_0.cvs20070307-5ubuntu7.6.diff.gz
Original-Maintainer: Debian multimedia packages maintainers <pkg-multimedia-maintainers at lists.alioth.debian.org>
More information about the Hardy-changes
mailing list