Candidate: CVE-2014-9319
PublicDate: 2014-12-09 23:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9319
 https://www.ffmpeg.org/security.html
Description:
 The ff_hevc_decode_nal_sps function in libavcodec/hevc_ps.c in FFMpeg
 before 2.1.6, 2.2.x through 2.3.x, and 2.4.x before 2.4.4 allows remote
 attackers to cause a denial of service (out-of-bounds access) via a crafted
 .bit file.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_ffmpeg:
 upstream: http://git.videolan.org/?p=ffmpeg.git;a=commit;h=ea38e5a6b75706477898eb1e6582d667dbb9946c
upstream_ffmpeg: needs-triage
lucid_ffmpeg: ignored (reached end-of-life)
precise_ffmpeg: DNE
trusty_ffmpeg: DNE
trusty/esm_ffmpeg: DNE
utopic_ffmpeg: DNE
vivid_ffmpeg: not-affected (7:2.5.4-1)
devel_ffmpeg: not-affected (7:2.5.4-1)