PublicDateAtUSN: 2012-05-22 Candidate: CVE-2011-3951 PublicDate: 2012-08-20 18:55:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3951 https://ubuntu.com/security/notices/USN-1479-1 https://ubuntu.com/security/notices/USN-1478-1 Description: The dpcm_decode_frame function in dpcm.c in libavcodec in FFmpeg before 0.10 and in Libav 0.5.x before 0.5.9, 0.6.x before 0.6.6, 0.7.x before 0.7.6, and 0.8.x before 0.8.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted stereo stream in a media file. Ubuntu-Description: Notes: mdeslaur> ffmpeg-extra in multiverse needs to have matching version mdeslaur> libav-extra is built with tarball produced by libav package mdeslaur> as of 2012-05-29, no fix in ffmpeg 0.5.x Bugs: Priority: medium Discovered-by: Assigned-to: CVSS: Patches_ffmpeg: upstream: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=ce7aee9b733134649a6ce2fa743e51733f33e67e upstream_ffmpeg: needs-triage hardy_ffmpeg: ignored (reached end-of-life) lucid_ffmpeg: released (4:0.5.9-0ubuntu0.10.04.1) natty_ffmpeg: DNE oneiric_ffmpeg: DNE precise_ffmpeg: DNE devel_ffmpeg: DNE Patches_ffmpeg-extra: upstream_ffmpeg-extra: needs-triage hardy_ffmpeg-extra: DNE lucid_ffmpeg-extra: released natty_ffmpeg-extra: DNE oneiric_ffmpeg-extra: DNE precise_ffmpeg-extra: DNE devel_ffmpeg-extra: DNE Patches_libav: upstream: http://git.libav.org/?p=libav.git;a=commit;h=ce7aee9b733134649a6ce2fa743e51733f33e67e upstream_libav: released (0.8.1,0.7.6,0.6.6) hardy_libav: DNE lucid_libav: DNE natty_libav: released (4:0.6.6-0ubuntu0.11.04.1) oneiric_libav: released (4:0.7.6-0ubuntu0.11.10.1) precise_libav: not-affected (4:0.8.1-0ubuntu1) devel_libav: not-affected (4:0.8.1-0ubuntu2) Patches_libav-extra: upstream_libav-extra: needs-triage hardy_libav-extra: DNE lucid_libav-extra: DNE natty_libav-extra: released oneiric_libav-extra: released precise_libav-extra: not-affected (4:0.8.1ubuntu1) devel_libav-extra: not-affected (4:0.8.1ubuntu1)