PublicDateAtUSN: 2012-05-13
Candidate: CVE-2011-3940
PublicDate: 2012-08-20 18:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3940
 https://ubuntu.com/security/notices/USN-1479-1
 https://ubuntu.com/security/notices/USN-1478-1
Description:
 nsvdec.c in libavcodec in FFmpeg 0.7.x before 0.7.12 and 0.8.x before
 0.8.11, and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before
 0.7.5, and 0.8.x before 0.8.1, allows remote attackers to cause a denial of
 service (out-of-bounds read and write) via a crafted NSV file that triggers
 "use of uninitialized streams."
Ubuntu-Description:
Notes:
 mdeslaur> ffmpeg-extra in multiverse needs to have matching version
 mdeslaur> libav-extra is built with tarball produced by libav package
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_ffmpeg:
 upstream: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=5c011706bc752d34bc6ada31d7df2ca0c9af7c6b
 upstream: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=8fd8a48263ff1437f9d02d7e78dc63efb9b5ed3a
 upstream: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=c898431ca5ef2a997fe9388b650f658fb60783e5
upstream_ffmpeg: released (0.5.9)
hardy_ffmpeg: ignored (reached end-of-life)
lucid_ffmpeg: released (4:0.5.9-0ubuntu0.10.04.1)
natty_ffmpeg: DNE
oneiric_ffmpeg: DNE
precise_ffmpeg: DNE
devel_ffmpeg: DNE

Patches_ffmpeg-extra:
upstream_ffmpeg-extra: needs-triage
hardy_ffmpeg-extra: DNE
lucid_ffmpeg-extra: released
natty_ffmpeg-extra: DNE
oneiric_ffmpeg-extra: DNE
precise_ffmpeg-extra: DNE
devel_ffmpeg-extra: DNE

Patches_libav:
upstream_libav: released (0.6.6,0.7.5,0.8.1)
hardy_libav: DNE
lucid_libav: DNE
natty_libav: released (4:0.6.6-0ubuntu0.11.04.1)
oneiric_libav: released (4:0.7.6-0ubuntu0.11.10.1)
precise_libav: not-affected (4:0.8.1-0ubuntu1)
devel_libav: not-affected (4:0.8.1-0ubuntu2)

Patches_libav-extra:
upstream_libav-extra: needs-triage
hardy_libav-extra: DNE
lucid_libav-extra: DNE
natty_libav-extra: released
oneiric_libav-extra: released
precise_libav-extra: not-affected (4:0.8.1ubuntu1)
devel_libav-extra: not-affected (4:0.8.1ubuntu1)