CVE-2006-4800
Published: 14 September 2006
Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530 allow remote attackers to cause a denial of service or possibly execute arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2) vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c, (8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, and (13) tta.c. NOTE: it is likely that this is a different vulnerability than CVE-2005-4048 and CVE-2006-2802.
Priority
Status
Package | Release | Status |
---|---|---|
ffmpeg Launchpad, Ubuntu, Debian |
edgy |
Not vulnerable
|
dapper |
Released
(0.cvs20050918-5ubuntu1.1)
|
|
feisty |
Not vulnerable
|
|
upstream |
Needs triage
|
|
gst-ffmpeg Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life, was needed)
|
edgy |
Ignored
(end of life, was needed)
|
|
feisty |
Released
(0.8.7-10ubuntu1)
|
|
upstream |
Needs triage
|
|
gstreamer0.10-ffmpeg Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life, was needed)
|
edgy |
Ignored
(end of life, was needed)
|
|
feisty |
Released
(0.10.2-0ubuntu4)
|
|
upstream |
Needs triage
|
|
kino Launchpad, Ubuntu, Debian |
dapper |
Not vulnerable
|
edgy |
Not vulnerable
|
|
feisty |
Not vulnerable
|
|
upstream |
Needs triage
|
|
xine-lib Launchpad, Ubuntu, Debian |
dapper |
Not vulnerable
|
edgy |
Not vulnerable
|
|
feisty |
Not vulnerable
|
|
upstream |
Needs triage
|