CVE-2009-4640

Priority
Low
Description
Array index error in vorbis_dec.c in FFmpeg 0.5 allows remote attackers to
cause a denial of service and possibly execute arbitrary code via a crafted
Vorbis file that triggers an out-of-bounds read.
References
Bugs
Notes
mdeslaur> not sure which specific issue this refers to
Package
Upstream:needed
Ubuntu 8.04 LTS (Hardy Heron):DNE
Ubuntu 10.04 LTS (Lucid Lynx):DNE
Ubuntu 11.04 (Natty Narwhal):DNE
Package
Upstream:needed
Ubuntu 8.04 LTS (Hardy Heron):released (3:0.cvs20070307-5ubuntu7.4)
Ubuntu 10.04 LTS (Lucid Lynx):not-affected (4:0.5.1-1ubuntu1)
Ubuntu 11.04 (Natty Narwhal):not-affected (4:0.5.1-1ubuntu1)
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:20:30 UTC (commit 5347)