Candidate: CVE-2008-4201
PublicDate: 2008-09-24 11:42:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4201
Description:
 Heap-based buffer overflow in the decodeMP4file function (frontend/main.c)
 in FAAD2 2.6.1 and earlier allows remote attackers to cause a denial of
 service (crash) and possibly execute arbitrary code via a crafted MPEG-4
 (MP4) file.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_faad2:
 upstream: http://www.audiocoding.com/patch/main_overflow.diff
upstream_faad2: released (2.6.1)
dapper_faad2: released (2.0.0+cvs20040908+mp4v2+bmp-0ubuntu3.6.06.1)
feisty_faad2: released (2.0.0+cvs20040908+mp4v2+bmp-0ubuntu3.7.04.1)
gutsy_faad2: released (2.0.0+cvs20040908+mp4v2+bmp-0ubuntu5.1)
hardy_faad2: released (2.6.1-2ubuntu0.1)
devel_faad2: not-affected (2.6.1-3.1)